While I understand and share the sentiment, I'm beginning to wonder if it might make sense to simply ask "why?", and keep asking that until some straight answers emerge. Because, as mothers everywhere ask "if some of your friends jumped off a cliff, would that make it the right and smart thing to do, or merely the popular and stupid thing?" Kurt On Tue, Jul 14, 2015 at 8:52 AM, <dan@geer.org> wrote:
Discussing security policy post-OPM debacle in a setting to which I have access (sorry to be oblique), it was said by a CxO "We have to prepare for the day when no software we depend on is run on premises."
I did not handle this well (think sputtering as an alternative to white rage). At the same time, I am probably in a bubble in that I suspect that nearly everyone I see with a computer (of any form factor) is already in that situation or, save for Javascript piped in from the cloud to run locally, soon will be -- denizens of this list and a few others excepted.
Echoing Lenin echoing Chernyshevsky, "What is to be done?" or, perhaps, "Is anything to be done?"
--dan