Defense in Depth
Comments center on the security principle of defense in depth, advocating for layered protections and minimizing attack surfaces to improve overall system security against adversaries.
Activity Over Time
Top Contributors
Keywords
Sample Comments
Yes. It's about minimizing attack surfaces. You can't hack what you can't understand.
It's about reducing the attack surface, dude.
It's called defense in depth. Google the term, it's a useful mechanism for real security.
"Defense in depth" is a commonly accepted security principle that suggests otherwise:https://en.wikipedia.org/wiki/Defense_in_depth_(computing)
"Limiting attack surface" is also a thing. Claiming there's no benefit is empirically false.
The only good form of defense, is defense in depth, or forming layers of defense. This bug puts a hole in one of those layers
"There's no such thing as a system being secure, only being secure against a particular adversary."
Defense in depth is a thing. Relying on "perimeter" security is a surefire way to get owned. Your attack surface is much larger than your perimeter.
It's impossible to solve all problem at once. You solve them one by one. Also security is not a boolean (secure or not secure): https://en.wikipedia.org/wiki/Security-in-depth.
Good to know. I think there is no silver bullet in security so anything making exploitation harder is good.