Re: [DML] Re: Stolen in Seattle
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [DML] Re: Stolen in Seattle

On 9/15/05, Chris Williams <chris@xxxxxxxxxxxxxxxxxxxxxxx> wrote:
> you still dont have a key to start it. Should the owners of the list
> feel that the artical is inapropriate I'm sure that they will remove
> it, however I do not think that it is.

Doesn't matter. If someone tries to restrict this information, I will
promptly archive it on my web site for everyone to see.

Why? As it has been said: Security through obscurity is no security at
all. We can't hide under a rock and pretend this information doesn't
exist. The fact is, there are flaws in every method used for security.
It is best that those flaws be exposed.

Let me give you an example: Let's say all DeLoreans shipped with
inertia switches that, as my local locksmith put it, "Will unlock the
doors if you just tap the side of the car with a rubber mallet." We've
all heard it, so just assume for a second that it's true. Now, let's
say I was aware of the problem and told nobody because of fears
thieves would use the information to their advantage. What's the most
logical result of this course of action?

1. Some number of people will discover the flaw anyway.
2. They will tell others.
3. Someone will use this information to rip off a DeLorean.
4. Most people will have no idea how it happened because they have no
idea this flaw exists.

Now, I don't know about you, but I'd be pretty ticked if it was my car
that was stolen and I later found out somebody knew about this problem
but refused to tell us.

The simple fact of the matter is this: If I know a good method of
circumventing security, it's likely the bad guys already know as well.
If they don't, they're apt to discover it soon. If you keep the method
hidden, you prevent people from taking steps to protect themselves.

Anyone who seriously thinks this information should remain private
should Google "security through obscurity". There are many excellent
articles explaining precisely why you're just plain wrong.

To address comments privately to the moderating team, please address:

For more info on the list, tech articles, cars for sale see

To search the archives or view files, log in at 
Yahoo! Groups Links

<*> To visit your group on the web, go to:

<*> To unsubscribe from this group, send an email to:

<*> Your use of Yahoo! Groups is subject to:

Home Back to the Home of PROJECT VIXEN

Copyright 2006  All rights reserved.

Opinions expressed in posts reflect the views of their respective authors.
DMCForum Mailing List Archive  DMCNews Mailing List Archive  DMC-UK Mailing List Archive