[Catalyst] Can you tell if a server is running Catalyst?

A. Pagaltzis pagaltzis at gmx.de
Thu May 18 17:44:31 CEST 2006

* Aran Deltac <aran at arandeltac.com> [2006-05-18 17:10]:
> Because "security through obscurity" is BAD. Security through
> properly tested and hardened systems is GOOD.

Sorry, you’re wrong about your first point. Security by obscurity
is bad and sloppy if you rely on it to protect you, but there is
no reason to give an attacker information that you could withhold.
Just because you did your homework and hardened your systems does
not make it a good idea to invite the world to hack them.

Aristotle Pagaltzis // <http://plasmasturm.org/>

More information about the Catalyst mailing list