Security quotes of the week
Security quotes of the week
Posted Oct 11, 2012 15:43 UTC (Thu) by raven667 (subscriber, #5198)In reply to: Security quotes of the week by nix
Parent article: Security quotes of the week
It was clear and understood by the QSA and management that this only prevented accidental disclosure due to shoulder surfing, printing or copying of config files and would not prevent disclosure to anyone with access to the host. That was fine and understood to be the risk, obfuscating sensitive config values turned out not to be that big a deal in practice.
Posted Oct 11, 2012 18:58 UTC (Thu)
by nix (subscriber, #2304)
[Link]
Security quotes of the week