Welcome to DU!
The truly grassroots left-of-center political community where regular people, not algorithms, drive the discussions and set the standards.
Join the community:
Create a free account
Support DU (and get rid of ads!):
Become a Star Member
Latest Breaking News
Editorials & Other Articles
General Discussion
The DU Lounge
All Forums
Issue Forums
Culture Forums
Alliance Forums
Region Forums
Support Forums
Help & Search
Linus Torvalds on security: 'Do no harm, don't break users'
https://www.theregister.co.uk/2017/11/24/linus_torvalds_approach_to_security/Linus Torvalds has offered a lengthy explanation of his thoughts on security, in which he explained a calmer and more detailed version of his expletive-laden thoughts on the topic earlier this week.
Torvalds was angry that developers wanted to kill dangerous processes in Linux, a measure that would have removed potential problems but done so in ways that users may not have enjoyed.
His long post on the matter suggested to security practitioners that “'Do no harm' should be your mantra for any new hardening work.”
“And that 'do no harm' may feel antithetical to the whole point,” Torvalds adedd. “You go 'but that doesn't work - then the bug still exists.' But remember - keep your eye on the endpoint, and that this is just the first step. You need to not piss off users, and you need to not piss of developers.”
Comments at the link (always interesting at The Register)