Quote:
Originally Posted by knew
We might have a misunderstanding here... I don't totally disagree with you. I'm just saying that instead of just saying that he is wrong and why, why don't you post a link to your more relevant information.
Of course you can't teach security in one day(1st step is to learn to progam so it's a pretty long road) and noobs usually don't have a budget to get a security consultant/audit but in my opinion some is better than nothing.
|
I never said the info he posted here is bad either (as in what he said shouldn't be done, tho there are some questionable advices). I question his posting/motives/end result. As i wrote above, you'll have newbies go through that list "check, check, done that, have that..." and think "cool, i did all that, i'm secure". And to repeat myself, most of those things you'll already have setup on the server, and third point is that hackers don't even look for those things to get inside, and compromissed servers that are breached in ways he wrote above are maybe 1 in 1000. So this just seemed like a publicity stunt (100th time, google for "how to secure a server") with bad end results to me. Thus the original reply.