[4383] in cryptography@c2.net mail archive


home	help	back	first	fref	pref	prev	next	nref	lref	last	post

RE: references to password sniffer incident

daemon@ATHENA.MIT.EDU (salzr@certco.com)
Wed Mar 24 17:22:57 1999

From: salzr@certco.com
To: "'Tom Perrine'" <tep@sdsc.edu>
Cc: <cryptography@c2.net>
Date: Wed, 24 Mar 1999 15:04:13 -0500
In-Reply-To: <199903240017.QAA23459@lart>

>as one person who downloaded the source from his home site, and then
>compiled it on the local machine with a GCC binary which he had also
>brought from "home".

So he trusted the libaries and headers on the local machine?
That seems less secure than bringing statically-linked binaries
on a floppy, where you only have to trust the kernel.


home	help	back	first	fref	pref	prev	next	nref	lref	last	post

[4383] in cryptography@c2.net mail archive

RE: references to password sniffer incident

daemon@ATHENA.MIT.EDU (salzr@certco.com)Wed Mar 24 17:22:57 1999

daemon@ATHENA.MIT.EDU (salzr@certco.com)
Wed Mar 24 17:22:57 1999