funsec mailing list archives
Re: Re[2]: Routers
From: Valdis.Kletnieks () vt edu
Date: Sun, 27 Nov 2005 20:35:38 -0500
On Mon, 28 Nov 2005 14:20:11 +1300, Nick FitzGerald said:
The main difference between Email and UPnP is that Email never was supposed to be secure, and had obvious (but tolerable) security implications to its (originally intended) users.
Almost all the current security issues with e-mail are due to *one* vendor who disregarded the strong warnings in the first MIME RFC's regarding the display of active content from untrusted sources..
UPnP is deliberately designed to _unbeknownst to the (likely) affected user_ lower the security of _other_ security measures that were presumably deliberately put in place to _increase_ said user's security. Sure it's "convenient", but security-wise it is an entirely different kettle of fish from Email as it deliberately lowers the security of _other_ supposed security measures...
Guess which vendor?
Attachment:
_bin
Description:
_______________________________________________ Fun and Misc security discussion for OT posts. https://linuxbox.org/cgi-bin/mailman/listinfo/funsec Note: funsec is a public and open mailing list.
Current thread:
- Routers, (continued)
- Routers Rob, grandpa of Ryan, Trevor, Devon & Hannah (Nov 27)
- Re: Routers Martin Wehlou (Nov 27)
- Re: Routers Dr. Neal Krawetz (Nov 27)
- Re: Routers Blue Boar (Nov 27)
- Re: Routers Martin Wehlou (Nov 27)
- Re: Routers James Eaton-Lee (Nov 27)
- Re: Routers Dude VanWinkle (Nov 27)
- Re: Routers Valdis . Kletnieks (Nov 27)
- Re[2]: Routers Pierre Vandevenne (Nov 27)
- Re: Re[2]: Routers Nick FitzGerald (Nov 27)
- Re: Re[2]: Routers Valdis . Kletnieks (Nov 27)
- Re: Re[2]: Routers Dude VanWinkle (Nov 27)
- Re: Re[2]: Routers Rob Slade, doting grandpa of Ryan, Trevor, Devon, and Hannah (Nov 28)
- Re: Routers Rob Slade, doting grandpa of Ryan, Trevor, Devon, and Hannah (Nov 28)