Re: security through obscurity (was: Re: remove apache os banner
From: Darkk (darkkeclipse@subdimension.com)Date: 06/07/02
- Previous message: Jim Grossl: "RE: IIS5 SSL Certs"
- In reply to: John Daniele: "RE: security through obscurity (was: Re: remove apache os banner"
- Next in thread: Jay D. Dyson: "RE: security through obscurity (was: Re: remove apache os banner"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
From: "Darkk" <darkkeclipse@subdimension.com> To: "John Daniele" <johnd@tsintel.com> Date: Sat, 8 Jun 2002 05:34:17 +0900
>
> I'm absolutely not advocating that anyone implement security through
> obscurity, but would have to agree that some degree of obscurity can slow
> down some attacks.. however, it should be the VERY, VERY, VERY last thing
> on your mind, and NEVER be relied upon as a means of protecting a network,
> application, building or anything.
>
Absolutely agreed.
You put in a single paragraph, what I was unable to summarise so well, in
several.
Banner munging and StO *is* a useful measure... but should be the last item
on the list.
Regards,
D
- Previous message: Jim Grossl: "RE: IIS5 SSL Certs"
- In reply to: John Daniele: "RE: security through obscurity (was: Re: remove apache os banner"
- Next in thread: Jay D. Dyson: "RE: security through obscurity (was: Re: remove apache os banner"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
|
