On Thu, 13 Nov 2014 15:02:58 -0500 Sean Greenslade <sean@seangreenslade.com> wrote:
On Thu, Nov 13, 2014 at 06:55:51AM +0100, Ralf Mardorf wrote:
Sean, actually you tells us that we should care about security holes in Mutt/1.5.23 to attack you ;) and since you're replying to Arch general email, you're likely using Arch Linux. This likely is a trick, you're running Alpin on openSUSE? ;)
Ha hah! I'm running LFS and using telnet as my mail client!
I kid, I kid. And I actually did have that thought as I was writing that mail. So, uh...do as I say, not as I do, etc. etc. I really won't claim that my setup is anywhere near hardened.
:) Another point of view is, that if we mention Arch Linux in a header, we also point out, that our OS is upgraded with current security patches from upstream. IOW it's easier for you, to attack somebody using another Linux distro. OTOH the latest bash issue was fixed by FreeBSD and all Linux distros I watch very soon and much more people use Apple, Windows and Android (pseudo-Linux) operating systems. I like to show that I'm using a MUA running on Arch Linux. Assumed I should need security, then I would use two additional computers to provide that. One for absolutely anonymous Internet usage and another computer that is completely decoupled from the Internet.