I'm not spreading fear, since i consider HN a place where people are educated enough understand the problems in it security.
Yes, once someone has hardware access, its devilishly hard to secure an environment, but just stating that its impossible is as wrong as security systems that ask their users too many questions to which they most likely have no good answer/no doubtfree answer.
There are systems which work pretty securely, i have worked with several educated security experts to create security infrastructures in companies.
I'm not saying that i don't understand the problems or don't want to learn solutions to them, i'm trying to defend the position of the user that can't be asked to learn about all the caveats of it security, since it is one of the most complex problems in computer science.
No, not every front-end developer that has to check-in his html und js files can be asked to understand all principles of it security.
Yes, once someone has hardware access, its devilishly hard to secure an environment, but just stating that its impossible is as wrong as security systems that ask their users too many questions to which they most likely have no good answer/no doubtfree answer.
There are systems which work pretty securely, i have worked with several educated security experts to create security infrastructures in companies.
I'm not saying that i don't understand the problems or don't want to learn solutions to them, i'm trying to defend the position of the user that can't be asked to learn about all the caveats of it security, since it is one of the most complex problems in computer science.
No, not every front-end developer that has to check-in his html und js files can be asked to understand all principles of it security.