Date: Mon, 3 Sep 2001 13:39:06 +0200 From: "Carroll, D. (Danny)" <Danny.Carroll@mail.ing.nl> To: "Nickolay A.Kritsky" <nkritsky@internethelp.ru> Cc: <security@FreeBSD.ORG> Subject: RE: Re[2]: Possible New Security Tool For FreeBSD, Need Your Help. Message-ID: <98829DC07ECECD47893074C4D525EFC31176C2@citsnl007.europe.intranet>
next in thread | raw e-mail | index | archive | help
:CDD> Yeah but Obfuscation PLUS good security does not hurt, in=20 :fact it helps. :CDD> Just so long as you don't *rely* on it. : :Don't you think it is really _too_ complicated. While you have :firewalls, open key logins, IP based verification. Just Keep It :Simple. IMHO the more complicated it gets, the more chances you have, :that in one day all this "security improvements" will play against :you. I was really objecting to the statement that obsfucation is bad, rather than the point in case. I agree simple security is good, but you can help yourself out by *hiding* things to make the potential attackers job a little harder. As for security improvements becomming unmanageable, I would suggest that good network documentation would solve that problem. If you are going to go to the trouble of writing a time-based port-scanning key-sending authentication system, then you'd better be prepared to document it. -----------------------------------------------------------------=0A= ATTENTION:=0A= The information in this electronic mail message is private and=0A= confidential, and only intended for the addressee. Should you=0A= receive this message by mistake, you are hereby notified that=0A= any disclosure, reproduction, distribution or use of this=0A= message is strictly prohibited. Please inform the sender by=0A= reply transmission and delete the message without copying or=0A= opening it.=0A= =0A= Messages and attachments are scanned for all viruses known.=0A= If this message contains password-protected attachments, the=0A= files have NOT been scanned for viruses by the ING mail domain.=0A= Always scan attachments before opening them.=0A= ----------------------------------------------------------------- To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?98829DC07ECECD47893074C4D525EFC31176C2>