[Asterisk-Users] Re: www.openpbx.org
Tzafrir Cohen
tzafrir at cohens.org.il
Sat Oct 8 10:43:07 MST 2005
On Sat, Oct 08, 2005 at 11:59:04AM -0400, Mike M wrote:
> On Sat, Oct 08, 2005 at 09:20:07AM -0400, Paul wrote:
> > Closed source might delay the cracker but it also delays pre-crack and
> > post-crack countermeasures.
>
> What's the alternative? Open source? Cracking is unnecessary with open
> source.
Search a bit about "security by obscurity". Basically if the security of
your system depends on a secret you can't easily change, it will get
exposed sooner or later. So you should design it to withstand such
leakage. E.g: change a password if it was exposed.
--
Tzafrir Cohen | tzafrir at jbr.cohens.org.il | VIM is
http://tzafrir.org.il | | a Mutt's
tzafrir at cohens.org.il | | best
ICQ# 16849755 | | friend
More information about the asterisk-users
mailing list