On Tue, Nov 06, 2012 at 06:27:16PM +0100, Sander Steffann wrote:
Hmmmm. This sounds like a case of security-by-obscurity to me...
It is. Security-by-obscurity is not as useless as it is often portrayed. As Gen. Westmoreland said: "If you can see it, you can hit it. If you can hit it, you can kill it". The reverse is also true: If you don't know it is there, you *can't* hit it... I reckon, if the ripedb was proposed today there is no way it would find consensus - it *is* dangerous these days to have to lay open, to absolutely everyone with a web browser, all your business relationships. Perhaps a re-think of exactly who can see how much of your data is way past due. Another question is, whether this discussion doesn't actually belong in the Services WG... Regards, Sascha Luck