open-source vs proprietary security software
skribe
skribe@amber.com.au
Sat Mar 17 13:38:01 2001
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
On Sat, 17 Mar 2001 17:05, Johan Wevers wrote:
> That is one thing, although it might not be perfect too (remember the false
> positive gpg could give on multiple signatures).
Not to be picky, but I never said that it was perfect, just that the chances
increase of finding a bug. Would the false positive have been found if the
source had been closed? Possibly another example of the value of open source
software =).
> The discussions about the
> proposed NSA-key in the windows signing system are another.
Very scary stuff. Of course, there is the potential here that this may
benefit OS software as foreign govts (non-US) no longer trust windoze and
move to something else. Has the NSA-key plan been nixed or is it still
pending?
skribe
- --
A diplomat is man who always remembers a woman's birthday but never her age.
-- Robert Frost
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.0.4 (GNU/Linux)
Comment: For info see http://www.gnupg.org
iD8DBQE6s1piDgXczVqI6KQRApMJAJ9U6LUI3oI2SU4b0UIWHG/I/NuJTwCeLsFR
g8D8i7mjbQrZPgaX5abG3RU=
=zZoj
-----END PGP SIGNATURE-----