| |||||||||||||
|
| |||||||||||||
DenialDenialPosted Jul 29, 2005 0:32 UTC (Fri) by freeio (guest, #9622)Parent article: Cisco Files Suit to Gag Researcher, Security Conference (eWeek)
Security by obscurity only works as long as no one unobscures it. Much like Medusa's box, once you open it, it is well nigh impossible to get the horrid contents back inside.
Even though Cisco and ISS may sue mightily, and perhaps even successfully, the information is now out in the wild. Destroying every paper and digital copy cannot unerase the information which the conference attendees took away in their heads.
To think otherwise is to be in denial.
(Log in to post comments)
Denial Posted Jul 29, 2005 3:24 UTC (Fri) by jtc (subscriber, #6246) [Link] " Security by obscurity only works as long as no one unobscures it. Much like Medusa's box, once you open it, it is well nigh impossible to get the horrid contents back inside."
I think you meant Pandora's box. I don't think Medusa had a box. :-)
Flaw researcher settles dispute with Cisco Posted Jul 29, 2005 7:28 UTC (Fri) by swamig (guest, #23735) [Link] Found this on ZDNET http://news.zdnet.com/2100-1009_22-5809390.html Also there is a Medusa's box you can get one at... http://www.finescrollsaw.com/medusa.htm ...
Mythology correction Posted Jul 29, 2005 12:45 UTC (Fri) by freeio (guest, #9622) [Link] Oopsie! I learned just enough of Greek mythology to get myself confused, I guess.
But speaking of Medusa, let's see now, wasn't she the one with the terminal case of ugly, and it would kill anyone just to look at her, unless it was in a mirror? So maybe I was talking about how ugly this exploit is. Yeah! That's the ticket!
No? Oh well...
Mythology correction Posted Jul 29, 2005 17:23 UTC (Fri) by ncm (subscriber, #165) [Link] This isn't slashdot. Please have something to say before you post. Also, wait until you're another five or six decades older before you try to get away with the expression "well-nigh".
Cisco doesn't expect to keep Lynn's paper secret. Most likely their goal is to create a "chilling effect" around IOS security research. They'll succeed in driving it underground. That won't stop exploits, but will make customers feel less exposed.
Mythology correction Posted Jul 29, 2005 18:23 UTC (Fri) by freeio (guest, #9622) [Link] "This isn't slashdot. Please have something to say before you post. Also, wait until you're another five or six decades older before you try to get away with the expression 'well-nigh.'"
Other than the incorrect mythology reference, I stand by my original post. I agree that intimidation is part of Cisco's plan, but not the whole of it. If possible, they would also like to have been able to undo the release of the information, which they have failed to do.
As for the use of "well nigh", the term was used quite properly. In contemporary English usage, there is no restriction upon the use of the term to persons of any particular age group.
Contemporary English usage Posted Aug 1, 2005 1:22 UTC (Mon) by xoddam (subscriber, #2322) [Link] > As for the use of "well nigh", the term was used quite properly.> In contemporary English usage, there is no restriction upon the > use of the term to persons of any particular age group.
Well said, that man!
Mythology correction Posted Jul 31, 2005 18:26 UTC (Sun) by oloryn (guest, #7408) [Link] They'll succeed in driving it underground. That won't stop exploits, but will make customers feel less exposed. They may feel less exposed, but they'll really be more exposed. This may be looked upon as good by Cisco's marketing department, but it's actually bad for the customer.
When public perception is at odds with your experience Posted Jul 31, 2005 19:29 UTC (Sun) by man_ls (subscriber, #15091) [Link] In fact, perception is good until exploits start appearing on the darknet and live routers start being taken over. If that does not happen, the emperor keeps his clothes on for some more time.
|
|
||||||||||||