From mboxrd@z Thu Jan  1 00:00:00 1970
Return-Path: <gentoo-user+bounces-203139-garchives=archives.gentoo.org@lists.gentoo.org>
Received: from lists.gentoo.org (pigeon.gentoo.org [208.92.234.80])
	(using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits)
	 key-exchange X25519 server-signature RSA-PSS (2048 bits) server-digest SHA256)
	(No client certificate requested)
	by finch.gentoo.org (Postfix) with ESMTPS id 18D51158041
	for <garchives@archives.gentoo.org>; Sun, 31 Mar 2024 21:36:19 +0000 (UTC)
Received: from pigeon.gentoo.org (localhost [127.0.0.1])
	by pigeon.gentoo.org (Postfix) with SMTP id F1A62E2AB7;
	Sun, 31 Mar 2024 21:36:13 +0000 (UTC)
Received: from smtp.hosts.co.uk (smtp.hosts.co.uk [85.233.160.19])
	(using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits)
	 key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256)
	(No client certificate requested)
	by pigeon.gentoo.org (Postfix) with ESMTPS id 80321E2A4E
	for <gentoo-user@lists.gentoo.org>; Sun, 31 Mar 2024 21:36:13 +0000 (UTC)
Received: from [195.12.14.66] (helo=[172.16.0.124])
	by smtp.hosts.co.uk with esmtpa (Exim)
	(envelope-from <antlists@youngman.org.uk>)
	id 1rr2qZ-00000000A0s-5ygW
	for gentoo-user@lists.gentoo.org;
	Sun, 31 Mar 2024 22:36:12 +0100
Message-ID: <79534154-5516-4760-9d73-9bcaf612c634@youngman.org.uk>
Date: Sun, 31 Mar 2024 22:36:12 +0100
Precedence: bulk
List-Post: <mailto:gentoo-user@lists.gentoo.org>
List-Help: <mailto:gentoo-user+help@lists.gentoo.org>
List-Unsubscribe: <mailto:gentoo-user+unsubscribe@lists.gentoo.org>
List-Subscribe: <mailto:gentoo-user+subscribe@lists.gentoo.org>
List-Id: Gentoo Linux mail <gentoo-user.gentoo.org>
X-BeenThere: gentoo-user@lists.gentoo.org
Reply-to: gentoo-user@lists.gentoo.org
X-Auto-Response-Suppress: DR, RN, NRN, OOF, AutoReply
MIME-Version: 1.0
User-Agent: Mozilla Thunderbird
Subject: Re: [gentoo-user] Re: [gentoo-dev] Current unavoidable use of xz
 utils in Gentoo
To: gentoo-user@lists.gentoo.org
References: <a2e3bb067a078bffaa860bdf5e11977d.squirrel@ukinbox.ecrypt.net>
 <bea7dbcb-8659-43fe-b90c-e8d8b93c52ce@gmail.com>
 <f41893920d7bd6dde5ae8665c4603b63@shitposting.expert>
 <CAGfcS_nHom3uhbu=56us+uLPBUTOBp0-Gx_aNj9zcBZepd-3LA@mail.gmail.com>
 <bea76a44-e506-4923-8be5-9b9b66f2b3f3@alstadheim.priv.no>
Content-Language: en-GB
From: Wol <antlists@youngman.org.uk>
In-Reply-To: <bea76a44-e506-4923-8be5-9b9b66f2b3f3@alstadheim.priv.no>
Content-Type: text/plain; charset=UTF-8; format=flowed
Content-Transfer-Encoding: 8bit
X-Archives-Salt: 22daf33f-fbe4-4811-8c34-7402c6b31b4f
X-Archives-Hash: 22f5ad52845df428cd7ac6df11df513f

On 31/03/2024 20:38, Håkon Alstadheim wrote:
> For commercial entities, the government could just contact the company 
> and apply pressure, no need to sneak the backdoor in. Cf. RSA .

Apply pressure to who? At the end of the day, the only people the 
government can trust are their own agents.

Serving a "secret compliance" notice on a third party is always fraught 
with danger. Okay, I probably can't trust my own government to protect 
me, but if the US Government served a compliance notice on me I'd treat 
it with the respect it deserved - probably use it as loo paper!

Nobody should trust anybody else more than they have need to - and 
especially governments should not trust 3rd-party nationals! It's not 
worth it.

Cheers,
Wol