nanog mailing list archives
Re: Stopping open proxies and open relays
From: Petri Helenius <pete () he iki fi>
Date: Sat, 07 Feb 2004 20:27:11 +0200
Valdis.Kletnieks () vt edu wrote:
It would help if systems would only execute code that is signed properly. This would make malware traceable. However the current way of getting your code signed is in many cases too costly for the casual open source developer so people are used to running unsigned or selfsigned application even when the facilities to check signatures would already exist in the system. (though for example in Windows, signatures are only checked at install, not runtime)I wouldn't recommend trying to expand it to "prohibit making and selling computers that are insecure", since no computer is 100% secure, and there's no objective "secure enough" standard - closest you will get there is probably Dell's offer to ship machines pre-hardened to Center for Internet Security guidelines.
Pete
Current thread:
- Re: Stopping open proxies and open relays, (continued)
- Re: Stopping open proxies and open relays Dr. Jeffrey Race (Feb 06)
- RE: Stopping open proxies and open relays Michel Py (Feb 06)
- RE: Stopping open proxies and open relays Michel Py (Feb 06)
- RE: Stopping open proxies and open relays Vivien M. (Feb 06)
- RE: Stopping open proxies and open relays Adi Linden (Feb 06)
- RE: Stopping open proxies and open relays Vivien M. (Feb 06)
- RE: Stopping open proxies and open relays Randy Bush (Feb 06)
- Re: Stopping open proxies and open relays Valdis . Kletnieks (Feb 06)
- RE: Stopping open proxies and open relays Vivien M. (Feb 06)
- Re: Stopping open proxies and open relays Guðbjörn Hreinsson (Feb 07)
- Re: Stopping open proxies and open relays Valdis . Kletnieks (Feb 07)
- Re: Stopping open proxies and open relays Petri Helenius (Feb 07)
- Re: Stopping open proxies and open relays Valdis . Kletnieks (Feb 07)
- Re: Stopping open proxies and open relays Guðbjörn S . Hreinsson (Feb 18)