[14368] in cryptography@c2.net mail archive
Re: Monoculture
daemon@ATHENA.MIT.EDU (John Saylor)
Wed Oct 1 14:15:18 2003
X-Original-To: cryptography@metzdowd.com
X-Original-To: cryptography@metzdowd.com
Date: Wed, 1 Oct 2003 12:00:28 -0400
From: John Saylor <johns@worldwinner.com>
To: Rich Salz <rsalz@datapower.com>,
Richard Schroeppel <rcs@CS.Arizona.EDU>,
"cryptography@metzdowd.com" <cryptography@metzdowd.com>
In-Reply-To: <20031001033941.GM1632@owl.songbird.com>
hi
( 03.09.30 20:39 -0700 ) kent@songbird.com:
> And, given the recent set of widely publicized flaws in openssl and
> openssh, I think that concern about monoculture in cryptography
> software is pretty damn well founded.
except for the fact that these holes get fixed as opposed to the other
flaws in the true monoculture computing environment [m$ windows] that
get denied, then fixed [at a later date, and with no external review of
the fix code possible].
the monoculture you refer to [ssl/ssh] is brought on by the
effectiveness of this software to allow for some measure of secure
network computing. a lot of people use it because it works.
but you're probably just trolling anyway ...
--
\js
---------------------------------------------------------------------
The Cryptography Mailing List
Unsubscribe by sending "unsubscribe cryptography" to majordomo@metzdowd.com
