From: Pavel Roskin <[EMAIL PROTECTED]>
Subject: Re: initial grub menu over ethernet
Date: Tue, 8 Aug 2000 14:55:07 -0400 (EDT)
> Just to make your point more precise, they are evil when they are used
> outside the area they were designed for.
Maybe you are right, but I can't make my thought so clear.
> It is not less secure than TFTP, but encryption _assumes_ better security.
> We shouldn't fool users and give them code that only makes any difference
> under very limited conditions.
You misunderstood me. I was talking about network console support
but not about decryption support. I'm not sure if decryption support
could be really useful, but network console support is desirable for
me. In fact, it has been listed in the file TODO for a long time.
> 1) We don't want optional features that require support for more than one
> piece of hardware except network cards. I.e. sounds are Ok as long as you
> don't have to add support for different sound cards (e.g. only PC Speaker
> is used). Graphics is Ok as long as it's for VGA.
Why is there an exception? If you permit one exception, why can't
you permit two exceptions? That sounds somewhat strange to me.
> 2) We don't want support for protocols of any kind that require a
> full-blown OS to be implemented correctly and securely, unless there is
> already a commonly used protocol, regardless of how insecure it is. I.e.
> RARP is Ok while Kerberos is not.
I wish that we can keep the policy...
Thanks,
Okuji
