[Cryptography] How to De-Bollocks Cryptography?
Sebastian Stache
zeb at qtt.se
Fri Aug 9 05:40:16 EDT 2024
On 2024-08-08 00:43, Jon Callas wrote:
> let's consider securing a building.
> The simplest way to do it is to have only one door into it. Everything goes through one door, so that's obviously simpler.
> we don't do security or cryptography for themselves. We don't go build secure systems. The cliché is that the most secure computer is the one that's turned off. The most secure network is the one that doesn't transmit packets.
I think consumer as well as provider knowledge combined with profit
policies also come into this. Block NBT, SMB and SMTP ports for consumer
networks, for their own protection, and because we don't want to risk
being accused of not providing a safe space for them. They don't know
what we've deprived them of in the first place, and anyway, why should
the consumer be self-hosted and independant when we can get her to use
our own centralised services instead? After all, they're almost free,
and we can prevent unwholesome pictures and words and undemocratic
ideologies as a bonus.
Z
More information about the cryptography
mailing list