Collaborate Disseminate
I was reading a request on meta Stack Exchange: A request for an informative popup before possible serial voting. It received two seemingly well-informed answers from well-informed users, and I’ve clipped out the relevant bit… Continue reading "Security through obscurity" is bad for security systems but good for spam detection. Why?
Normally I preach that rolling your own custom crypto algorithm is a bad idea. But will it really hurt if it’s the outermost layer though? Or will it make security worse?
AES -> CipherText -> CustomEncryptionAlgorit… Continue reading Security BY obscurity is horrible. Is security AND obscurity good?
As a follow-on to these questions:
What unique fingerprinting information can an iOS7 app collect?
What unique device fingerprinting information can an iOS8 app collect?
What unique device fingerprinting information can an… Continue reading What unique device fingerprinting information can an iOS 11 app collect?
I was looking into implementing a security measure by adding false analysis tools / signatures on client PC’s.
The idea is that certain malware would scan the environment for analysis tools, and if the malware is hardened, i… Continue reading Adding false network tools / signatures for malware defense
This question already has an answer here:
The valid role of obscurity
3 answers
I’m a beginner and reading about attitude… Continue reading Is *all* obscurity subject to debate? [duplicate]
I’m registering the devices of my app users with a third-party push notification service.
I need to associate each device with its user at the service so that I can target a specific user’s devices when sending a notificatio… Continue reading Is it a security risk to send a database primary key to an external system?
I’ve been learning about ethical hacking, and utilizing the wonderful resources that helpful organization like OWASP and OpenDNS have provided for learning and testing. However, I sometimes come up against challenges that I’… Continue reading ASCII to HEX to obscure filenames: Is this common?
My Archlinux running devices does not present themselves duing ssh handshake:
$ telnet 192.168.1.151 11735
Trying 192.168.1.151…
Connected to 192.168.1.151.
Escape character is ‘^]’.
SSH-2.0-OpenSSH_7.4
However Raspribi… Continue reading during ssh handshaking server introduce itself – does it improve security to change self presentation?
As a follow-on to these questions:
What unique fingerprinting information can an iOS7 app collect?
What unique device fingerprinting information can an iOS8 app collect?
What unique device fingerprinting information can an iOS9 app coll… Continue reading What unique fingerprinting information can an iOS 10 app collect?
Is having a longer/more complex username considered more secure than using a shorter/basic one? Would the uniqueness of a username positively impact security?
This is assuming that adversaries aren’t aware of what the usern… Continue reading Does username length/complexity/uniqueness positively impact security?