Embed Notice

HTML Code

<blockquote style="position: relative; padding-left: 55px;"><section><a href="https://hachyderm.io/users/dalias/statuses/113957929083074266">Rich Felker (dalias@hachyderm.io)'s status on Friday, 07-Feb-2025 01:40:04 JST</a><a href="https://hachyderm.io/@dalias" title="dalias@hachyderm.io"><img src="https://gnusocial.jp/avatar/40873-48-20221207231635.webp" width="48" height="48" alt="Rich Felker" style="position: absolute; left: 0; top: 0;">Rich Felker</a><div><a href="https://fosstodon.org/@atoponce/113957601429026754" rel="in-reply-to">in reply to</a><ul><li><li><a href="https://gnusocial.jp/user/227658" title="dimpase@mathstodon.xyz">Dima Pasechnik 🇺🇦 🇳🇱</a></li></ul></div></section><article><p><a href="https://fosstodon.org/@atoponce">@atoponce</a> <a href="https://mathstodon.xyz/@dimpase">@dimpase</a> That is not what we call a "vulnerability", rather behaving correctly (not trying to lock the user's own data away from them in hidden storage they can't find, inspect, or backup).</p><p>It's arguably a "lack of hardening", but the hardening doesn't belong at this layer. If user needs protection against physical seizure, they use FDE and strong passphrase. If they need protection against malicious local apps, they run those on a different account or in a sandbox.</p></article><footer><a rel="bookmark" href="https://gnusocial.jp/conversation/4519982#notice-8849654">In conversation</a><time datetime="2025-02-07T01:40:04+09:00" title="Friday, 07-Feb-2025 01:40:04 JST">about 2 months ago</time> <span>from <span><a href="https://hachyderm.io/@dalias/113957929083074266" rel="external" title="Sent from hachyderm.io via ActivityPub">hachyderm.io</a></span></span><a href="https://hachyderm.io/@dalias/113957929083074266">permalink</a></footer></blockquote>

Corresponding Notice

Embed this notice
Rich Felker (dalias@hachyderm.io)'s status on Friday, 07-Feb-2025 01:40:04 JSTRich Felker
in reply to
- Aaron Toponce ⚛️:debian:
- Dima Pasechnik 🇺🇦 🇳🇱
@atoponce @dimpase That is not what we call a "vulnerability", rather behaving correctly (not trying to lock the user's own data away from them in hidden storage they can't find, inspect, or backup).
It's arguably a "lack of hardening", but the hardening doesn't belong at this layer. If user needs protection against physical seizure, they use FDE and strong passphrase. If they need protection against malicious local apps, they run those on a different account or in a sandbox.
In conversationabout 2 months ago from hachyderm.iopermalink

Public

Embed Notice

HTML Code

Corresponding Notice