• @Ooops@feddit.org
      link
      fedilink
      English
      3
      edit-2
      1 day ago

      Just google the term

      Yes, please do.

      The actual notion of “security through obscurity” (that will surely come up on Google if their AI bullshittery hasn’t screwed up completely…) for Linux is insane because open source is the polar opposite. By that definition proprietary code is actually much more linked to the concept.

      The often more unprecise and colloquial usage I thus assumed you were using doesn’t apply either, for the reasons I summarised.

      So which imaginary definition of “security through obscurity” are you using and assuming that it will come up on Google when none of the real ones makes any sense?

      • @atzanteol@sh.itjust.works
        link
        fedilink
        English
        -71 day ago

        OMG.

        https://en.wikipedia.org/wiki/Security_through_obscurity

        In security engineering, security through obscurity is the practice of concealing the details or mechanisms of a system to enhance its security. This approach relies on the principle of hiding something in plain sight, akin to a magician’s sleight of hand or the use of camouflage. It diverges from traditional security methods, such as physical locks, and is more about obscuring information or characteristics to deter potential threats. Examples of this practice include disguising sensitive information within commonplace items, like a piece of paper in a book, or altering digital footprints, such as spoofing a web browser’s version number. While not a standalone solution, security through obscurity can complement other security measures in certain scenarios.

        You don’t know what you’re talking about - please stop. It’s embarrassing. It’s a long-standing industry term not some weird phrase I just made up. Nobody is saying “Linux is obscure”.

        • @Ooops@feddit.org
          link
          fedilink
          English
          521 hours ago

          Nobody is saying “Linux is obscure”

          How about scrolling up to the exact comment I anwered to? Or -as you seem to be on the exceptional dense side- let me do it for you…

          Linux’s “security through obscurity” was never going to last.

          As already explained above I did not expect that statement to use the common “long-standing industry term” because -again- it would be utterly insane to claim security through obscurity for something open source.

        • Helix 🧬
          link
          fedilink
          English
          723 hours ago

          You quoted something directly contradicting what you said. Nothing is concealed, every line of erroneous code could have been analysed for 15 years. All information needed to find the bug was public since it the code has been written and checked in publicly.

        • clb92
          link
          fedilink
          English
          4
          edit-2
          21 hours ago

          the practice of concealing the details or mechanisms of a system to enhance its security

          That’s literally the opposite of what open source and Linux does, though. Anyone can see how it works, so they have to have actual security instead of relying on security through obscurity.