Mechanism-not-policy violations continue to irritate me

I find this infuriating. People who write security software get hung up on the most ridiculous nonsense in ways that make my system less secure. Exampli gratia, OpenSSH simply will not use public key authentication if it decides my keys are not stored sufficiently securely, and will fall back to password authentication. That is, it will use a system it knows is less secure, because the more secure system isn’t more secure “enough”. And there’s no override for this. It’s stupid. (See also network programs that, on finding an untrusted certificate, drop TLS and continue in plaintext. Not enough desks or heads for this.)

Leave a Reply

Your email address will not be published. Required fields are marked *