Hacker Newsnew | past | comments | ask | show | jobs | submitlogin

> I start getting the feeling that you're involved in keeping the package repositories stuck in the past.

I start getting the feeling that you have no actual experience in threat modelling.



This entire discussion has been about MITM attacks but you keep making arguments that are irrelevant in this context. A compromised web server that's serving malicious data is not a MITM attack.

Do you acknowledge this disconnect? Is there a good reason why you keep responding to discussion about MITM with ridicule and the type of responses I'd expect from someone who's severely confused what constitutes a MITM attack and what doesn't?




Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact

Search: