<quote name="Merrill Oveson" date="Mon, 13 Sep 2010 at 11:50 -0600"> > yeah, they can't get in - that is if they click on it, they're > prompted for user name and password. > > I believe the first rule of security is "Don't show the thief where > the doors are."
That is a disastrous policy. "Security by obscurity" it is often called, and it's almost a derogatory term. If you want to add obscurity as one final layer on top of a well thought out and implemented security strategy, then go for it, but to call it the first rule is just folly. Von Fugal -- Government is a disease that masquerades as its own cure -- Robert Lefevre
signature.asc
Description: Digital signature
/* PLUG: http://plug.org, #utah on irc.freenode.net Unsubscribe: http://plug.org/mailman/options/plug Don't fear the penguin. */
