Comment on Router Hardware: How Much Paranoia is Too Much?
lordnikon@lemmy.world 3 days ago
If you read this you will never trust anything again. If you aee not familiar with him that is Ken Thompson one of the father’s of Unix.
Comment on Router Hardware: How Much Paranoia is Too Much?
lordnikon@lemmy.world 3 days ago
If you read this you will never trust anything again. If you aee not familiar with him that is Ken Thompson one of the father’s of Unix.
libretech@reddthat.com 3 days ago
Thanks so much for sharing this! I think reading through it helps refocus the question I guess I should have asked, which is “Which vendors do people trust more in practice, recognizing that at some point recursive paranoia has to end unless one has the time and skill to try to build literally everything on their own?” And as a question of probabilities, it feels a bit more manageable to try to make a call and move on. I’m sort of thinking of this thread as a way for me to calibrate my current probability estimates with people who know more than I do and have likely thought about this question more than I have. But the reminder that there isn’t really going to be any certainty regardless of what I decide is well-taken.
lordnikon@lemmy.world 3 days ago
Your welcome but that’s the point he was making even if you build everything on your own. The backdoor would be in the compiler. So even if you built /bin/login for example the would just inject it at compile time when compiling your code. But then you asked I will just compile the compiler but you have to compile it at some point and he can inject the code back into the compiler at that point.
libretech@reddthat.com 3 days ago
Sorry, imprecise wording on my part, I meant build as in build/code from scratch, not build from source!
lordnikon@lemmy.world 3 days ago
No worries , but i think I’m not being clear if you build it from scratch. how are you going you going to compile it ?