I can only assume that most readers on/. work in the computer industry. I make my living in computer security. If this is HP/Compaq's stance, then every report I make will recommend avoiding their products. It is just that simple. Collectively, we have a large voice, we just need to take actions instead of debating.
It is interesting that Chris is in favor of controlling full disclosure. I don't see how he can be objective, since @stake is one of a handfull of security product vendors that is now in bed with Microsoft. They want to limit the accessibility of inforomation to a select few and increase the time limit before the disclosures are made publice. This works well for them as they can then sell themselves as a one of the select few in the know, besides the person who really discovered the vulnerability and released it into the wild. What a bunch of hypocrites.
The terrorists are not using PGP to communicate. They are using Steganography. They have been for years. There is no possible way that legislating back doors into encryption products will affect that practice.
Besides, companies like MS have already joined the key escrow program. MS Exchange encryption has a backdoor and so does EFS in Windows 2000. I think that gives the government enough systems to monitor. They don't need more legislation against US citizens.
Slashdot Mirror
I can only assume that most readers on /. work in the computer industry. I make my living in computer security. If this is HP/Compaq's stance, then every report I make will recommend avoiding their products. It is just that simple. Collectively, we have a large voice, we just need to take actions instead of debating.
It is interesting that Chris is in favor of controlling full disclosure. I don't see how he can be objective, since @stake is one of a handfull of security product vendors that is now in bed with Microsoft. They want to limit the accessibility of inforomation to a select few and increase the time limit before the disclosures are made publice. This works well for them as they can then sell themselves as a one of the select few in the know, besides the person who really discovered the vulnerability and released it into the wild. What a bunch of hypocrites.
The terrorists are not using PGP to communicate. They are using Steganography. They have been for years. There is no possible way that legislating back doors into encryption products will affect that practice.
Besides, companies like MS have already joined the key escrow program. MS Exchange encryption has a backdoor and so does EFS in Windows 2000. I think that gives the government enough systems to monitor. They don't need more legislation against US citizens.