Home 
Blog Programming Security not Obscurity
It warms the cockles of my web-development heart to read about 'Keep You Safe', over at one of my favourite blogs, Linux.com. I won't expound too much on KYS myself, except to say that it's an online data-vault idea, so you can keep all your important data elsewhere (as a 'disaster-recovery' measure). I can see the benefit of this, as I use the open-source TrueCrypt software locally to store encrypted data, but perhaps I should consider an off-site storage medium also, just in case!
Anyway, the reason I'm so pleased to read about KYS is because it is based on the LAMP architecture. That is, "Linux Apache MySQL PHP", which is a very common open-source web-serving setup, and indeed the one that I use. Linux is the Operating System, Apache provides the webserving functionality, MySQL is the database server, and PHP executes your code. What's more, KYS is based on RHEL (RedHat Enterprise Linux), which is just a hop-skip-and-jump (and money) away from my webserver's OS, which is Fedora Core 6.
The point is that the entire LAMP setup is open source, therefore depending upon the principle of "security not obscurity". What does that mean? Well it means that the security of the software is achieved because of its transparency... everybody can look at the code, so everybody can see potential security exploits, and therefore they are more likely to get fixed. Proprietary (or otherwise 'closed source') software, such as MS Windows, doesn't have this benefit, and as such tends to rely on its contents being obscured from the public eye. It might sound good, but with the number of people out there who reverse engineer stuff, it really isn't any security at all.
If I had an open source flag right now, I'd wave it. Viva la FOSS! :>>
Read 868 times
Last modified on Tuesday, 30 November 1999 00:00