Honestly, being downvoted for being clear does not show a great intelectual clarity. Really: do you people check all the hashes of your software? Do you trust all the certificates in your browsers? Have you really honestly checked all the ssh fingerprints of the servers you connect to?

I repeat: security is not abstract, it depends on the problem and the trade-offs.

If this hurts please check your mind.

And feel free to downvote OF COURSE.

Be happy.