[maemo-developers] Security Guidance for N800 OS development

From: Simon Budig simon at budig.de
Date: Tue Feb 20 17:44:41 EET 2007
Zoran Kolic (zkolic at sbb.co.yu) wrote:
> Flaming doesn't go me well, so I will try. If I have security in my mind,
> I would ask for openvms or openbsd. I use freebsd as my second skin, since
> it is secure almost as openbsd and simple as reading mind. I could add
> all kind of measures that harden it to Batman vehicle. It has source and
> binary option to update. Flags could be set to not allow any changing
> of files. You could decide to get aside resources to avoid dod. Etc, since
> I don't know everything about. Linux in general can similar, but I don't
> see it on my 770. And I should not, for it is a little dude. I would just
> ask for iptables, nothing more. I don't want to argue is it useful or not.
> Believe me with your life.

I guess you are missing the point here: Usually a nokia tablet does not
have internet services running. Asking for iptables is like asking for a
padlock, when your house does not have any doors. In that case the lock
would not at all improve the security.

So far you have not yet specified *why* having iptables on the device
would help with the security. If it is just the feeling of "I have
iptables on the device, it is more secure now", then this is a bogus
placebo feeling.

Arguing without technical arguments will not convince people of your
need.

Bye,
        Simon
-- 
              simon at budig.de              http://simon.budig.de/

More information about the maemo-developers mailing list