I mean, yes, if you can guarantee that all your software stack in 100% secure. In reality this is unfeasible on even mathematically impossible to do formally (reducible to the halting problem). So while bugs keep being found in things like the Linux kernel (naturally, nothing is immune to oversight), and they’re always going to be, keep your software up to date.
even mathematically impossible to do formally (reducible to the halting problem).
Nah, if the programs are not arbitrary (and I hope they’re not, considering that you chose them) then it doesn’t reduce to that. But you are right that it is not feasible for most industries and he is right that in some industries it is not only feasible but required.
If security is the one and only priority, you wouldn’t be running a goddamn desktop environment and all that other baggage. You absolutely would be auditing your entire stack. Because security is the one and only priority. I didn’t pose the hypothetical, but that’s the necessary consequence.
I mean, yes, if you can guarantee that all your software stack in 100% secure. In reality this is unfeasible on even mathematically impossible to do formally (reducible to the halting problem). So while bugs keep being found in things like the Linux kernel (naturally, nothing is immune to oversight), and they’re always going to be, keep your software up to date.
Nah, if the programs are not arbitrary (and I hope they’re not, considering that you chose them) then it doesn’t reduce to that. But you are right that it is not feasible for most industries and he is right that in some industries it is not only feasible but required.
If security is the one and only priority, you wouldn’t be running a goddamn desktop environment and all that other baggage. You absolutely would be auditing your entire stack. Because security is the one and only priority. I didn’t pose the hypothetical, but that’s the necessary consequence.