No. I'm saying that you can check that there's not new vendor-induced bug surface outside the patch set and limit the scope of what needs audit to the patch set.
OK, so there is no security problem that we can't solve today, it's just your *opinion* that your system is better than the one we have, correct?
-
-
the problem we can't solve without repro builds is to be able to answer the question "how do i know this binary is derived from precisely this source code" with something other than "because I trust this SPOF". (And, that is useful even if you believe that you control the SPOF.)
-
I've already told you how to achieve that *today*. I'm getting tired of repeating this to you, so let's just end it here. I don't really feel like repeating myself ad-nauseum again today.
- 1 more reply
New conversation -
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.
