• 0 Posts
  • 41 Comments
Joined 3 years ago
cake
Cake day: June 12th, 2023

help-circle

  • OMG.

    https://en.wikipedia.org/wiki/Security_through_obscurity

    In security engineering, security through obscurity is the practice of concealing the details or mechanisms of a system to enhance its security. This approach relies on the principle of hiding something in plain sight, akin to a magician’s sleight of hand or the use of camouflage. It diverges from traditional security methods, such as physical locks, and is more about obscuring information or characteristics to deter potential threats. Examples of this practice include disguising sensitive information within commonplace items, like a piece of paper in a book, or altering digital footprints, such as spoofing a web browser’s version number. While not a standalone solution, security through obscurity can complement other security measures in certain scenarios.

    You don’t know what you’re talking about - please stop. It’s embarrassing. It’s a long-standing industry term not some weird phrase I just made up. Nobody is saying “Linux is obscure”.






  • See what I mean?

    As if a proxy blindly passing traffic directly to a backend server “reduces attack surface” in any meaningful way. 🙄

    Edit: Guy edits his post with a bunch of stuff and assumes I’ve read it later. I can’t eyeroll enough…

    1. You’ve increased your “attack surface” by adding a second application to the stack. Proxies aren’t magic, they are also targets.
    2. Sure - you can do those things on a proxy. How many people here are? And why are those things never suggested when people here say “use a reverse proxy”? Because they think the proxy is the security.

  • atzanteol@sh.itjust.workstoLinux@lemmy.mlInit system comparisons?
    link
    fedilink
    English
    arrow-up
    5
    arrow-down
    4
    ·
    1 day ago

    Systemd is feature-rich but controversial. Its monolithic design bundles service management, logging, networking, device management, and more into a single codebase exceeding 1.4 million lines of code.

    That is a gross misrepresentation of systemd…

    It’s like saying GNU coreutils is monolithic because all of the individual tools combined are bundled together.

    Systemd is comprised of many individual applications.