Hacker News new | past | comments | ask | show | jobs | submit login

Yes, if your thread model includes the provider of your operating system, then you cannot win. It's really that simple. You fundamentally need to trust your operating system because it can just lie to you





> You fundamentally need to trust your operating system because it can just lie to you

Trust us, we are liars. /s

reply


This is false. With FLOSS and reproducible builds, you can rely on the community for verification.

reply


Not unless your entire stack down to the bare silicon is also FLOSS, and the community is able to verify.

There is a lot of navel gazing in these comments about "the perfect solution", but we all know (or should know) that perfect is the enemy of good enough.

reply


We've seen countless examples of relatively minor libraries being exploited which then cause havoc because of a spider web of transitive dependencies.

reply




Consider applying for YC's W25 batch! Applications are open till Nov 12.

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact

Search: