cryptoanarchy.wiki

Arise, you have nothing to lose but your barbed wire fences!

1994-08-29 - Re: Announcing Bellcore’s Trusted Software Integrity (Betsi) System

Header Data

From: Jim Gillogly <jim@rand.org>
To: “L. Todd Masco” <cactus@bibliob.slip.netcom.com>
Message Hash: 6159fbe5b45bfd183b052ea2a733bc6bf5344230a45781fcb212b65b9560f38d
Message ID: <9408292233.AA29506@mycroft.rand.org>
Reply To: <199408292212.SAA08717@bb.com>
UTC Datetime: 1994-08-29 22:35:48 UTC
Raw Date: Mon, 29 Aug 94 15:35:48 PDT

Raw message

From: Jim Gillogly <jim@rand.org>
Date: Mon, 29 Aug 94 15:35:48 PDT
To: "L. Todd Masco" <cactus@bibliob.slip.netcom.com>
Subject: Re: Announcing Bellcore's Trusted Software Integrity (Betsi) System
In-Reply-To: <199408292212.SAA08717@bb.com>
Message-ID: <9408292233.AA29506@mycroft.rand.org>
MIME-Version: 1.0
Content-Type: text/plain



> "L. Todd Masco" <cactus@bibliob.slip.netcom.com> writes:
> Certainly not enough to justify the rest: Can you name one example of an
> author of a package including some virus?  Not someone putting one

Yes.

> post-production (individual signing will prevent that), but the original
> author?

Mark Ludwig wrote KOH, an on-the-fly disk encryption program that is also
a virus.  It was posted recently to alt.security.pgp.  Ludwig is the author
of a number of other viruses that don't claim to be useful.

> It's a straw man.

OK.  For the record, I think it's a Good Thing to have as much confidence
in lots of different frequent-version programs as I do in (say) PGP with
its signed-file protocols.

	Jim Gillogly
	Hevensday, 7 Halimath S.R. 1994, 22:32

Thread