<div dir="ltr">On Sat, Oct 8, 2016 at 11:34 AM, John Gilmore <span dir="ltr"><<a href="mailto:gnu@toad.com" target="_blank">gnu@toad.com</a>></span> wrote:<br><div class="gmail_extra"><div class="gmail_quote"><blockquote class="gmail_quote" style="margin:0px 0px 0px 0.8ex;border-left:1px solid rgb(204,204,204);padding-left:1ex"><span class="gmail-">> <<a href="https://www.dropbox.com/sh/1sguzzmfag54i82/AAAkApDlXIG0kycBqKCkoDJya?dl=0" rel="noreferrer" target="_blank">https://www.dropbox.com/sh/<wbr>1sguzzmfag54i82/<wbr>AAAkApDlXIG0kycBqKCkoDJya?dl=0</a><wbr>>, proof the security needs to be usable.<br>
<br>
</span>Not sure what the point is.  I presume it relates to the first file<br>
inside the 600MB "2016 LABE Level 1 photo.zip" file having the name<br>
"/".  But the Linux unzip command detects and bypasses it anyway:<br>
<br>
  warning:  stripped absolute path spec from /<br>
  mapname:  conversion of  failed<br>
<br>
What does this have to do with "security fatigue"?<br></blockquote><div><br></div><div>Wrong link, I guess?<br><br><a href="https://www.nist.gov/news-events/news/2016/10/security-fatigue-can-cause-computer-users-feel-hopeless-and-act-recklessly">https://www.nist.gov/news-events/news/2016/10/security-fatigue-can-cause-computer-users-feel-hopeless-and-act-recklessly</a> is likely what he was referring to. Sadly, seems like the actual paper is behind a paywall. :(<br><br></div><div>~reed <br></div></div></div></div>