| Deutsch English Français Italiano |
|
<uuvaag$32e2u$2@dont-email.me> View for Bookmarking (what is this?) Look up another Usenet article |
Path: ...!weretis.net!feeder8.news.weretis.net!eternal-september.org!feeder3.eternal-september.org!news.eternal-september.org!.POSTED!not-for-mail From: Don Y <blockedofcourse@foo.invalid> Newsgroups: sci.electronics.design Subject: Re: German state gov. dicthing Windows for Linux, 30k workers migrating. Date: Sun, 7 Apr 2024 16:30:20 -0700 Organization: A noiseless patient Spider Lines: 44 Message-ID: <uuvaag$32e2u$2@dont-email.me> References: <uuqirt$6kgh$1@solani.org> <jgp21jl76nk0c3064ss3pbfq5pboav93hp@4ax.com> <5qb31j9c2ia9a6h2fr50onqa2vp4d4bsfm@4ax.com> <3hf31j9d0uq5b9imcq94b495c3hclbjv79@4ax.com> <1qrnmxu.99joma1j6s84iN%liz@poppyrecords.invalid.invalid> <5c561j1ehdrvmu212nttaoglh1m6ajlq8u@4ax.com> MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8; format=flowed Content-Transfer-Encoding: 7bit Injection-Date: Sun, 07 Apr 2024 23:30:25 +0200 (CEST) Injection-Info: dont-email.me; posting-host="8be94720f6ad45a0802650285e910a01"; logging-data="3225694"; mail-complaints-to="abuse@eternal-september.org"; posting-account="U2FsdGVkX1/S8jW6V1vG7RsdbE8t+rDW" User-Agent: Mozilla/5.0 (Windows NT 6.1; Win64; x64; rv:102.0) Gecko/20100101 Thunderbird/102.2.2 Cancel-Lock: sha1:RJWFJ5sAn1LfwjaOmSqERfsEKgk= Content-Language: en-US In-Reply-To: <5c561j1ehdrvmu212nttaoglh1m6ajlq8u@4ax.com> Bytes: 3837 On 4/7/2024 3:00 PM, Joe Gwinn wrote: > My instinct is that this second method will likely emerge in some > form, but with larger lumps. Lets say there were twenty totally > independent implementations (think N-version programming) of each of > the partitions, and there were five such partitions. One can arrange > things such that it almost never happens the flaws of all the > partitions line up enough to be useful, and with different large > systems using a random set of partitions, the damage will be > contained. That doesn't work. Because machines (and their users) WANT to interact with other machines and other users. So, they have standardized protocols, tools, applications, etc. Are you going to stop using file-sharing protocols (because you need a server/client to implement those -- on each host)? <https://nordvpn.com/blog/smb-vulnerability/> Stop browsing/serving web pages? Resort to a "text only" email MUA/MTA? <https://www.comparitech.com/blog/information-security/web-browser-attacks/> <https://www.microsoft.com/en-us/security/blog/2022/07/26/malicious-iis-extensions-quietly-open-persistent-backdoors-into-servers/> <https://portswigger.net/web-security/host-header/exploiting> <https://www.forbes.com/sites/daveywinder/2023/03/16/microsoft-outlook-warning-critical-new-email-exploit-triggers-automatically-update-now/> <https://www.forbes.com/sites/daveywinder/2022/08/04/gmail-warning-as-new-attack-bypasses-passwords--2fa-to-read-all-email/?sh=2b2b49054128> Stop using MSOffice documents? PDFs? <https://www.bleepingcomputer.com/news/security/new-microsoft-office-zero-day-used-in-attacks-to-execute-powershell/> <https://www.sentinelone.com/blog/malicious-pdfs-revealing-techniques-behind-attacks/> Hard-code IP addresses (and rely on them to be invariant)? <https://bluecatnetworks.com/blog/four-major-dns-attack-types-and-how-to-mitigate-them/> Stop using standard comm protocols? <https://securityintelligence.com/x-force/dissecting-exploiting-tcp-ip-rce-vulnerability-evilesp/> <https://www.usenix.org/conference/usenixsecurity18/presentation/chen-weiteng> People want machines to make things EASIER to share, not harder. If you didn't want to "share", then you could adopt a completely proprietary solution to each of the mainstream issues that are routinely addressed by COTS products. And, this doesn't even begin to address "human engineering" exploits!