Full Disclosure mailing list archives
Re: "security by obscurity"
From: Georgi Guninski <guninski () guninski com>
Date: Mon, 09 Dec 2002 18:57:35 +0200
Berend-Jan Wever wrote:
Hmmmm... ... isn't hiding your root password security through obscurity ? ... isn't hiding your private PGP key security through obscurity ? ... isn't 90% of security based on these kinds of obscurity ?
IMHO this is not security by obscurity. An example for security by obscurity is the following:I give you an application which does encryption, but I don't tell you how it works at all.
The marketing says it is tru$tworthy and unbreakable. _______________________________________________ Full-Disclosure - We believe in it. Charter: http://lists.netsys.com/full-disclosure-charter.html
Current thread:
- UN support for "security by obscurity" Richard M. Smith (Dec 06)
- Re: UN support for "security by obscurity" Brian Hatch (Dec 06)
- Re: UN support for "security by obscurity" Rick Updegrove (Dec 07)
- *Including* Security through obscurity measures is good. Brian Hatch (Dec 08)
- Re: UN support for "security by obscurity" Rick Updegrove (Dec 07)
- Re: UN support for "security by obscurity" Georgi Guninski (Dec 07)
- Re: UN support for "security by obscurity" Michal Zalewski (Dec 07)
- Re: UN support for "security by obscurity" Brian McWilliams (Dec 07)
- "security by obscurity" Berend-Jan Wever (Dec 07)
- Re: "security by obscurity" Niels Bakker (Dec 08)
- Re: "security by obscurity" Georgi Guninski (Dec 09)
- Re: "security by obscurity" Roland Postle (Dec 09)
- "security by obscurity" Berend-Jan Wever (Dec 07)
- Re: UN support for "security by obscurity" Brian Hatch (Dec 06)
- <Possible follow-ups>
- RE: UN support for "security by obscurity" Schmehl, Paul L (Dec 07)