Re: Security Problems
Brad Knowles (brad@his.com)
Thu, 7 Mar 1996 03:22:29 -0500
At 12:28 AM 3/7/96, Terry Ritter wrote:
> Presumably all users are not security experts, and they *hire*
> experts -- or buy the products of experts -- to do the job right.
> Not doing what the user wants sounds like a bad idea to me.
If you do the job perfectly, then their computer is a slag heap
on the floor, since the only truely secure computer is one that
cannot possibly have any data recovered from it by anyone. This is
why the military had guys in Europe whose sole job was to run out to
the computer floor and pull the pins on the ThermIt grenades that
would slag the disk packs, if the Russkies should ever come over that
border.
No, we have to balance security with ease of use. If you can't
do that, then you have no business being in business.
Furthermore, we have *defined* that RFC 1847 is our starting
framework for how this shall be done inside of MIME. If you don't
want to adhere to RFC 1847 (as it is likely to be slightly modified),
then you're welcome to go elsewhere and practice your security,
because that is the stated purpose of this group (as was hashed out
at the workshop).
It's fine to discuss computer security and encryption in general,
but that's not what we're here for. If you don't want to work in an
RFC 1847-like framework, then you need to go elsewhere.
--
Brad Knowles, MIME/PGP: brad@his.com
comp.mail.sendmail FAQ Maintainer <http://www.his.com/~brad/>
finger brad@his.com for my PGP Public Keys and Geek Code
The comp.mail.sendmail FAQ is at <http://www.his.com/~brad/sendmail/>