From mboxrd@z Thu Jan 1 00:00:00 1970 From: ng0 Subject: Re: server and client in one package -> security issue (was: Add murmur) Date: Sun, 12 Feb 2017 12:31:47 +0000 Message-ID: <20170212123147.odpfawkb6gosh2bx@wasp> References: <20170201204312.3005-1-contact.ng0@cryptolab.net> <87mvdvxq9v.fsf@gnu.org> <20170209182030.ngn2dsdfbzsmymdj@wasp> <87efz7asit.fsf@gnu.org> <96fa2c02-f5da-d4f5-6074-04b29f5376fb@crazy-compilers.com> Mime-Version: 1.0 Content-Type: text/plain; charset=utf-8 Content-Transfer-Encoding: quoted-printable Return-path: Received: from eggs.gnu.org ([2001:4830:134:3::10]:41985) by lists.gnu.org with esmtp (Exim 4.71) (envelope-from ) id 1cctIA-0006UL-4g for guix-devel@gnu.org; Sun, 12 Feb 2017 07:30:13 -0500 Received: from Debian-exim by eggs.gnu.org with spam-scanned (Exim 4.71) (envelope-from ) id 1cctI6-0006bk-Tx for guix-devel@gnu.org; Sun, 12 Feb 2017 07:30:10 -0500 Received: from latitanza.investici.org ([82.94.249.234]:63878) by eggs.gnu.org with esmtps (TLS1.0:DHE_RSA_AES_256_CBC_SHA1:32) (Exim 4.71) (envelope-from ) id 1cctI6-0006ap-KN for guix-devel@gnu.org; Sun, 12 Feb 2017 07:30:06 -0500 Content-Disposition: inline In-Reply-To: <96fa2c02-f5da-d4f5-6074-04b29f5376fb@crazy-compilers.com> List-Id: "Development of GNU Guix and the GNU System distribution." List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , Errors-To: guix-devel-bounces+gcggd-guix-devel=m.gmane.org@gnu.org Sender: "Guix-devel" To: Hartmut Goebel Cc: guix-devel@gnu.org On 17-02-12 13:23:09, Hartmut Goebel wrote: > Am 09.02.2017 um 23:50 schrieb Ludovic Court=C3=A8s: > > I think the only reason to separate things usually is size, not > > =E2=80=9Caesthetics.=E2=80=9D So I=E2=80=99d be in favor of keeping = both in the same output if > > there=E2=80=99s no size problem. >=20 > Separating clients and servers is not an "aesthetic" thing. It's a > matter of security. >=20 > One basic rule for hardening systems is: "only install the required > software". If we munge server and clients packages, this obeys this rul= e. >=20 > In my day-business I'm a security consultant (CISSP, CSSLP and ISO > 27001 Lead Implementer). And from my point of view Guix already has a > medium problem of acceptance since it munges development-files and > run-time files into one package - as we do for all libraries. This > already contradicts the above mentioned basic rule. >=20 > Now if Guix starts munging server and client components into one > package, this plain disqualifies GuixSD from any security sensitive > system. [*] >=20 > [*] OTOH it opens up chances for big business: selling "Secure GuixSD" > to customers. >=20 > --=20 > Regards > Hartmut Goebel >=20 > | Hartmut Goebel | h.goebel@crazy-compilers.com = | > | www.crazy-compilers.com | compilers which you thought are impossible = | >=20 >=20 Exactly why I think we should do this, with a more detailed reasoning. Thanks! --=20 ng0 -- https://www.inventati.org/patternsinthechaos/