On Tue, Apr 01, 2003 at 09:43:38PM +0200, Dariush Pietrzak wrote: > > One reason is security: > > it's relatively easy for an intruder to install a kernel module based > > rootkit, and then hide her processes, files or connections. > isn't it security-by-obscurity? No, that's stretching the definition of security-by-obscurity all out of proportion... Some things in security _have_ to be obscure. Your password, for example. Or the primes used to generate your PGP private key. Security-by-obscurity refers to securing things by relying on the obscurity of the _processes and functionality_ behind the security system, instead of the _data_ used to secure it. It's a bad idea because _processes and functionality_ is a much smaller search domain than _data_. -- ----------------------------------------------------------- Paul "TBBle" Hampson, MCSE 6th year CompSci/Asian Studies student, ANU The Boss, Bubblesworth Pty Ltd (ABN: 51 095 284 361) Paul.Hampson@Anu.edu.au Of course Pacman didn't influence us as kids. If it did, we'd be running around in darkened rooms, popping pills and listening to repetitive music. -- Kristian Wilson, Nintendo, Inc, 1989 This email is licensed to the recipient for non-commercial use, duplication and distribution. -----------------------------------------------------------
Attachment:
pgpwEpKtjEYBo.pgp
Description: PGP signature