Boston Linux & Unix (BLU) Home | Calendar | Mail Lists | List Archives | Desktop SIG | Hardware Hacking SIG
Wiki | Flickr | PicasaWeb | Video | Maps & Directions | Installfests | Keysignings
Linux Cafe | Meeting Notes | Blog | Linux Links | Bling | About BLU

BLU Discuss list archive


[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Frackin script kiddies!!



On Tue, Aug 3, 2010 at 12:06 PM, Richard Pieri <richard.pieri-Re5JQEeQqe8AvxtiuMwx3w at public.gmane.org> wrote:
> On Aug 3, 2010, at 1:18 AM, Jarod Wilson wrote:
>>
>> Adding SSL and a password most certainly *does* provide added
>> protection. I know *I* feel like my car is less likely to be stolen if
>> I lock the doors, roll up the windows and take the key with me,
>> anyway. Sure, it can still happen, but its a lot less likely.
>
> Here's something to ponder: if you put a Club on your wheel then your car is *more* likely to be stolen by a professional car thief than if you did not.

Yes, a professional will steal your car no matter what. A dumb kid
looking for a joyride is slightly more apt to take the car that is
unlocked with the keys in the ignition than the one that is locked
with no keys in sight.

> A pro needs one tool to steal your car: a crowbar to break the wheel lock. ?The same pro needs a 6 inch hacksaw blade to saw through your steering wheel to remove the Club and use it as the crowbar to break the lock. ?Which is easier to carry around: a crowbar or a 6 inch hacksaw blade?
>
> The object lesson: feeling secure is not being secure.

Its not about feeling secure. Its about keeping out stupid idiots. SSL
+ auth keeps stupid idiot vandals out. And to me, that's Good Enough
for a non-critical system like a mythtv box. The determined will
always find a way in if they really want to.

-- 
Jarod Wilson
jarod-ajLrJawYSntWk0Htik3J/w at public.gmane.org







BLU is a member of BostonUserGroups
BLU is a member of BostonUserGroups
We also thank MIT for the use of their facilities.

Valid HTML 4.01! Valid CSS!



Boston Linux & Unix / webmaster@blu.org