lists.openwall.net   lists  /  announce  owl-users  owl-dev  john-users  john-dev  passwdqc-users  yescrypt  popa3d-users  /  oss-security  kernel-hardening  musl  sabotage  tlsify  passwords  /  crypt-dev  xvendor  /  Bugtraq  Full-Disclosure  linux-kernel  linux-netdev  linux-ext4  linux-hardening  linux-cve-announce  PHC 
Open Source and information security mailing list archives
 
Hash Suite: Windows password security audit tool. GUI, reports in PDF.
[<prev] [next>] [<thread-prev] [thread-next>] [day] [month] [year] [list]
Message-ID: <20031020133624.GA66141@netpublishing.com>
From: ggilliss at netpublishing.com (Gregory A. Gilliss)
Subject: JAP Wins Court Victory

Privacy is an important adjunct to security, IMHO. Perhaps the JAP folks
did not handle their police issues as well as they should have. However
let us not abandon them or the project yet, unless we can find more
compelling and better solutions to the problem of the powers that be
improperly intruding onto the use of the online community.

Terrorists would not make bombs if they were satisfied with their condition.
I suspect that JAP and other privacy services would not have been widely
deployed if there were not the threat of snooping and privacy invasion.
I vote that we stay focused on the problem, and not bash the solution (well
not *too* much at least).

G

On or about 2003.10.20 08:48:24 +0000, Cael Abal (lists@...you.com) said:

> This doesn't change how the JAP folks behaved -- the correct course of
> action would have been for them to have notified their users of the
> request to backdoor JAP immediately.  I fear the JAP people have lost a
> fair amount of credibility and it'll take more than a, "JAP is okay
> again!  Trust us!" before they regain the world's trust.
> 
> Please lets not rehash the backdoor issue.
> 
> As for the idea that the existence of a court order somehow proves the
> robustness of a certain piece of code, well, that's just silly.  Cops
> aren't software developers, they're cops.  Court orders are their tools
> of choice, not disassemblers.

-- 
Gregory A. Gilliss, CISSP                             Telephone: 1 650 872 2420
Computer Engineering                                   E-mail: greg@...liss.com
Computer Security                                                ICQ: 123710561
Software Development                          WWW: http://www.gilliss.com/greg/
PGP Key fingerprint 2F 0B 70 AE 5F 8E 71 7A 2D 86 52 BA B7 83 D9 B4 14 0E 8C A3


Powered by blists - more mailing lists

Powered by Openwall GNU/*/Linux Powered by OpenVZ