[geeks] RE: geeks digest, Vol 1 #1931 - 19 msgs

Tim H. lists at pellucidar.net
Thu Jul 25 16:03:32 CDT 2002


On Thu, 25 Jul 2002 15:05:17 -0400
"Matthew Braun" <mjbraun at dkcs.com> wrote:

> > Security through obscurity is not a solution either. I read an
> > interesting article about detecting remote OSs, and injecting
> > payloads based on this reconnaissance. If you can make a probable
> > guess, and find an OS, determining where to stick your payload on
> > the stack is easy.  You could also cycle through shellcode for 20
> > platforms and inject accordingly :)
> >
> > - Ryan

Security through obscurity is a valid and recommended practice, but only
on a system that is secure as you can make it anyway.  Microsoft has
given it a bad name because it is the only security they attempt, but it
really is useful.  If a wannabe hacker pounds on your machine for a
couple minutes, then scratches their head in confusion and goes
somewhere else you win, If a serious hacker pounds on your machine, the
obscurity doesn't slow them down much, but it didn't help them or hurt
you either, so it is a win/no loss situation.  I don't depend on people
not knowing what my valuables are to protect them, but I don't advertise
them either.

Tim



More information about the geeks mailing list