xpl0it
Senior Member
- Feb 21, 2014
- 124
- 88
- Thread starter
- #141
Sio kila security detail huwa inawekwa public. Kwenye nchi iko hivyo, kwenye majeshi iko hivyo na kwenye Software Development iko hivyo. Inaitwa "The Principle of Security by Obscurity". Nilitarajia uwe unafahamu hilo. The only way ya kutuaminisha hilo linawezekana ni kwa wewe ku penetrate kwa hiyo brute force.
Akaunti ya kampui yetu insta ni hosannaht
Ivamie kama uhakikisho kwetu nasi hatutakushtaki popote. Vinginevyo ina maana haipenyeki, at least wewe huwezi kupenya kwa hiyo brute force attack!
Nafahamu hilo, na Security through obscurity is bad because it substitutes real security for secrecy in such a way that if someone learns the trick they compromise the system. Ndio maana, most Organizations hazirely tu kwa hiyo principle, watahitaji angalau a good layer of security to place hiyo security through obscurity on top of it.
Na vile vile utawezaje kusema (wewe kama nani? Instagram spokesman ama security engineer wao?) kuwa instagram haiwezi kuwa penetrated kwa brute, mimi imani yangu na ndo iko ivo kuwa hakuna system yoyote ambayo ni fully secured, as long as imetengenezwa na huyu huyu binadamu lazma inafaults na hata hizo mitigations hazishuka na malaika hivo nazo zina downsides zake na zaweza kuwa circumvented!
Anyway mada ishakuwa concluded apo juu ^^.
"
"Haina maana kwako na kwa wengine ambao hawajathubutu kuiexperiment, hivo sina budi kujisumbua kujiprove kwenu ninyi ambao hamjaitumia na pengine hata mmeshindwa kuitumia.
Sihitaji kuacknowledge my skills before mtu yeyote bro.
What nilichotaka ni kushare nanyi hiyo module. Hivo basi kama utaipuuzia, we baki kuipuuzia wapo watakaoweza kuitumia. Nmeelezea procedures namna ya kuitumia na kama kuna mtu mwenye pentesting skills ataweza kujiongeza.
Ni hayo tu.