funsec mailing list archives

Re: Re[2]: Routers

From: Valdis.Kletnieks () vt edu
Date: Sun, 27 Nov 2005 20:35:38 -0500

On Mon, 28 Nov 2005 14:20:11 +1300, Nick FitzGerald said:

The main difference between Email and UPnP is that Email never was 
supposed to be secure, and had obvious (but tolerable) security 
implications to its (originally intended) users.


Almost all the current security issues with e-mail are due to *one* vendor
who disregarded the strong warnings in the first MIME RFC's regarding
the display of active content from untrusted sources..

UPnP is deliberately designed to _unbeknownst to the (likely) affected 
user_ lower the security of _other_ security measures that were 
presumably deliberately put in place to _increase_ said user's 
security.  Sure it's "convenient", but security-wise it is an entirely 
different kettle of fish from Email as it deliberately lowers the 
security of _other_ supposed security measures...


Guess which vendor?

Attachment: _bin
Description:

_______________________________________________
Fun and Misc security discussion for OT posts.
https://linuxbox.org/cgi-bin/mailman/listinfo/funsec
Note: funsec is a public and open mailing list.

Current thread:

Routers, (continued)
- - - Routers Rob, grandpa of Ryan, Trevor, Devon & Hannah (Nov 27)
    - Re: Routers Martin Wehlou (Nov 27)
    - Re: Routers Dr. Neal Krawetz (Nov 27)
    - Re: Routers Blue Boar (Nov 27)
    - Re: Routers Martin Wehlou (Nov 27)
    - Re: Routers James Eaton-Lee (Nov 27)
    - Re: Routers Dude VanWinkle (Nov 27)
    - Re: Routers Valdis . Kletnieks (Nov 27)
    - Re[2]: Routers Pierre Vandevenne (Nov 27)
    - Re: Re[2]: Routers Nick FitzGerald (Nov 27)
    - Re: Re[2]: Routers Valdis . Kletnieks (Nov 27)
    - Re: Re[2]: Routers Dude VanWinkle (Nov 27)
    - Re: Re[2]: Routers Rob Slade, doting grandpa of Ryan, Trevor, Devon, and Hannah (Nov 28)
    - Re: Routers Rob Slade, doting grandpa of Ryan, Trevor, Devon, and Hannah (Nov 28)