Hacker News new | ask | show | jobs
by JeremyBanks 2605 days ago
I agree with the general statement about security absolutism (it's often very dumb and irrational), but in ths case in particular, most keys are swept from GitHub within seconds of being pushed, so the additional harm of not pruning those commits is very low. Data loss concerns are probably a much larger source of harm to weigh against it.
1 comments
soulofmischief 2605 days ago
Well now I would say that I'm not interested in most keys, and I am interested in figuring out how to mitigate damage from the rest of them. You only need one key to get inside.

99% coverage is not good enough from a security standpoint, not when we can achieve 100%.

Simply, this functionality should be transparent and toggleable.

link
JeremyBanks 2605 days ago
deleted
link
soulofmischief 2605 days ago
I think you're confused about what absolutism means. Just because I want 100% coverage when achievable does not mean I am being absolutist.
link