Re: Network Security Scanning

[Adam Shostack <adam () homeport org>]

On Tue, Jul 06, 1999 at 10:02:01AM +0900, Matt Doughty wrote:
| On Fri, Jul 02, 1999 at 11:53:52AM -0400, Adam Shostack wrote:
| > Gosh, I hope not.  The folks I know at Securify are much more into
| > protecting interesting information than trying to hide IP addresses.
| > If they got into that sort of obscurity without cause, my respect for
| > them would plummet.
| > 
| Most people would consider an organizations network addressing
| information to be 'interesting information' which it is. More over,
| it is trivial to hide.  trivial to hide. Course I guess if you are 
| so confident in your security that you want to tell attackers where to 
| point their guns that is your choice.

        My experience in trying to hide the information is that it
ends up in mail headers, will find its way out through poorly written
protocols, etc.

        I'd be very happy if the bad guys would pay attention when I
tell them where to point their guns.  "Hey, shoot this hardened
target!"  But they don't, and I try to design so that when obscure
information leaks, it does me no harm.

Adam



-- 
"It is seldom that liberty of any kind is lost all at once."
                                                       -Hume