Computer Tips -Tech Info

I remember many years ago watching a Dr. Who episode where a very important key was “hidden” in a display of many other keys. Kind of like hiding a tree in a forest. This concept is “security by obscurity”. Generally this is considered a bad approach to security. It is a bad approach if this is the ONLY thing you consider. Many examples are security by obscurity are usually thought of as… proprietary applications that keep source code secret so no one can find what flaws exist, using operating systems or programs that are “obscure” or have small market share and are not targetted.

The first item is obviously one that doesn’t work. How many security vulnerabilities in Windows have been reported from outside Microsoft? I don’t know that there’s an accurate count – point is LOTS. The second one is something I talked about in the last entry. It can help as a part of an overall strategy but shouldn’t be considered the magic bullet. There are some things about the design of Apple and Linux systems that I think discourage the spread of malware if done right, but not every distribution (or user) may “do things right”. Any built in security measure is usually possible to circumvent.

Another angle on security through obscurity is this. Let’s say you decide you DO want to run a webserver on your machine and allow access from the outside world. Let’s say that you don’t want it to be obvious though and decide that instead of the usual port 80, you want it to run on port 8888, then to access it an outsider would have to enter http://yoursiteaddress:8888 The address wouldn’t show up in a typical scan for listening servers on port 80 and it would certainly have less visibility. If it’s configured insecurely though it certainly won’t help protect against someone that discovers it and wants to break in.

So, in certain circumstances, obscuring yourself for security purposes can be useful, but they shouldn’t be relied on as the only way to stay safe.

Popularity: 1% [?]

   Send article as PDF   

• Network Security - Arp spoofing series I think I've wrapped up the series on arp spoofing and it's implications for network security. I know there's nothing earth shattering here, most network security types are well aware of the problems (and perhaps aware of more sophisticated solutions?). For some though, this series is likely an eye opener......
• What a week.... I think it's time to pass along a long story of what's gone on over the last week or so here and some of the reasons there hasn't been anything posted. Generally, I would say that work has been busy, but something happened last week that went a bit beyond......
• Common Networking Ports Along the lines of "knowing your network" with the network security guide. Here are some of the most commonly used network ports. There are 65535 ports that can listen for a connection, so this is not a thorough listing. (These are tcp unless noted otherwise.) FTP 21 (file transfer protocol,......

• Home Security - Don't Make Yourself a Target In 2004, the Justice Bureau released the statistics that nearly one in six homes were burgled, that 75% of all crime was related to property and that in 90% of the burglaries the burglar gained access into the home. Every 3 seconds a property crime occurs, and every 15 seconds......
• Is Social Security a Ponzi Scheme? (Part 1: Ponzi History) As we head toward the 2012 election, you'll probably hear more politicians echo the thoughts of Texas governor Rick Perry and call Social Security a Ponzi scheme.  The mouth of a politician isn’t always the best source of accurate information.  Is Rick Perry's assessment correct? Before determining whether or not......
• Life Insurance Strategies for Baby Boomers Many baby boomers have been paying for one or more life insurance policies for most of their adult lives.  As children grow up and move out, the need for life insurance diminishes.  Even an otherwise dependent spouse may not need as much or any life insurance protection.  Instead, accumulated retirement......

Similar Posts

• Network Security guide for the home or small business network – Part 6 – Secure your services
• Malware scanning?
• Windows 98 and ME in final days of support (6 by my count)
• Using ssh to protect web browsing over wireless or other hostile networks
• 10 things to do before hooking a Linux PC up to the net

This entry was posted on Tuesday, December 27th, 2005 at 4:32 pm and is filed under Computers, Networking, Security. You can follow any responses to this entry through the RSS 2.0 feed. You can leave a response, or trackback from your own site.