Full Disclosure mailing list archives

Previous By Date Next
Previous By Thread Next

Re: Lock business practices "security-by-obscurity" for 150 years

From: hellNbak <hellnbak () nmrc org>
Date: Thu, 23 Jan 2003 13:38:15 -0600 (CST)
On Thu, 23 Jan 2003, Georgi Guninski wrote:



Richard, you seem to be smoking something bad today.
If you look at your trollish analogy, from the quote above you will see that
such problems are disclosed "in locksmith trade journals" at least.
And who cares if micro$osft relies on obscurity?



Georgi, you are letting your immature hatred for Microsoft cloud your
vision, but what else is new.  Yes, this issue has been known for 150
years by locksmiths and they didn't understand the security risks or they
did and didn't care because they didn't think that anyone else would know
about it.  But, as with most things this wasn't the case.  Others, outside
of the locksmithing industry no doubt knew about this as well.  With no
one in the locksmithing industry running out and telling anyone this
would have made a nice little secret to hang on to.

So yes, this was security through obscurity.  Without public disclosure
there would be little motivation for lock companies to retool and create
better locks.

 --
-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-

"I don't intend to offend, I offend with my intent"

hellNbak () nmrc org
http://www.nmrc.org/~hellnbak

-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html
Previous By Date Next
Previous By Thread Next

Current thread: