|
|
|
|
|
|
by ducharmdev
1055 days ago
|
|
|
> How is being “leaky” in any way bad or even good? Information-gathering is a common early step in any attack against a system; knowing the language & libraries involved (especially their versions) allows you to search for any existing CVEs that apply. > Are you advocating “security by obscurity”? I don't think OP was implying that security by obscurity alone is sufficient, just that it's unwise to advertise information that's not relevant to end users, that could help would-be attackers. |
|
|