Full Disclosure mailing list archives

Re: Lock business practices "security-by-obscurity" for 150 years

From: Georgi Guninski <guninski () guninski com>
Date: Thu, 23 Jan 2003 20:27:58 +0200

Richard M. Smith wrote:

http://www.nytimes.com/2003/01/23/business/23LOCK.html?pagewanted=print&;
The technique is not news to locksmiths, said Lloyd Seliber, the head
instructor of master-key classes for Schlage, a lock company that is
part of Ingersoll-Rand. He said he even taught the technique, which he
calls decoding, in his training program for locksmiths.

"This has been true for 150 years," Mr. Seliber said.

Variations on the decoding technique have also been mentioned in passing
in locksmith trade journals, but usually as a way for locksmiths to
replace a lost master key and not as a security risk.


Richard, you seem to be smoking something bad today.

If you look at your trollish analogy, from the quote above you will see thatsuch problems are disclosed "in locksmith trade journals" at least.

And who cares if micro$osft relies on obscurity?

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html

Current thread:

Lock business practices "security-by-obscurity" for 150 years Richard M. Smith (Jan 23)
- Re: Lock business practices "security-by-obscurity" for 150 years Chief Gadgeteer (Jan 23)
- Re: Lock business practices "security-by-obscurity" for 150 years Georgi Guninski (Jan 23)
  - Re: Lock business practices "security-by-obscurity" for 150 years hellNbak (Jan 23)
    - Re: Lock business practices "security-by-obscurity" for 150 years Kevin Spett (Jan 23)
    - Re: Lock business practices "security-by-obscurity" for 150 years David Howe (Jan 23)
- Re: Lock business practices "security-by-obscurity" for 150 years eecue (Jan 23)
- Re: Lock business practices "security-by-obscurity" for 150 years Brian McWilliams (Jan 26)