That's not the only meaning of that statement
Posted Feb 2, 2006 4:05 UTC (Thu) by elanthis
In reply to: That's not the only meaning of that statement
Parent article: Van Jacobson's network channels
And my point remains... what is that unprivileged process going to do that you couldn't do by plugging in a laptop or some other device onto the network?
If you are implicitly trusting every packet sent by some 'trusted' host (which, if it were truly trusted, would never be running any malicious code anyhow), or trusting anything running on port 1024 down, you're not running a very secure network at all.
There is no security at the IP level at all. If you want trust and security, you have to put it all in higher layers.
to post comments)