Index ¦ Archives ¦ Atom > Tag: Security through obscurity

Kerckhoffs's principle

One of the security tenants that I live by is Kerckhoffs's principle.

A cryptosystem should be secure even if everything about the system, except the key, is public knowledge.

-- Auguste Kerckhoffs, 1883

It's beautiful in it's simplicity and yet counter intuitive.

It's a beguiling myth that if you want to …


Changing SSH from port 22

Changing the SSH service to run a port other than 22 is fairly common security practice but I don't like it. The problem is that I find it really hard to argue against doing it, because it works.

What ever else I might say in this post it doesn't change …

Creative Commons License
Content on this site is licensed under a Creative Commons Attribution 4.0 International License.
Built using Pelican. Based on a theme by Giulio Fidente on github.