[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index] Re: [Xen-devel] [qubes-devel] Re: Critique of the Xen Security Process
On Tue, Nov 10, 2015 at 1:09 PM, Lars Kurth <lars.kurth.xen@xxxxxxxxx> wrote:
Yes Lars of course, and also changing mindset has real costs, because a more security oriented mindset involves some additional work, some hard thinking, some additional study, something already done that needs recoding etc. I mean it is not simply an act of will, rather a targeted effort. A security mindset is slowing developing in the whole society and I see Qubes developers as the more advanced front. The reality is changing fast. A serious bug in Xen practically means that all my passwords can be stolen from my no-network VM or even more seriously that the life of an activist can be compromised. These facts are dramatic or tragic and the situation is constantly and fast worsening. So nobody is guilty for 7 years old code developed in a different situation, but the same Joanna words are totally justified and welcome. We have to face reality and take action. From my point of view It is a matter of educating those who pay, for that I offered to write some copywriting. Best Fran  > Joanna wrote in her mail: _______________________________________________ Xen-devel mailing list Xen-devel@xxxxxxxxxxxxx http://lists.xen.org/xen-devel
|
Lists.xenproject.org is hosted with RackSpace, monitoring our |