The Root of All E-Mail

wiredog writes "A Washington Post story about the DNS, the VeriSign NOC, and some of the security therein." Especially interesting in light of the recent security lockdowns throughout much of the Western world. The havoc of losing the A root server would be bad, like Staypuft Marshmallow Man bad.

What the----

[daeley]

Obscurity is the first line of defense. The building is unmarked, its address unspecified in company literature and its managers tight-lipped about disclosing driving directions or identifying markings to strangers.

They are apparently okay with featuring the place in an article in the Washington Post, though. Sheesh.

Re:What the----

[TechnoGrl]

Obscurity is the first line of defense. The building is unmarked, its address unspecified in company literature and its managers tight-lipped about disclosing driving directions or identifying markings to strangers.

Gosh....then maybe they should take this ( http://www.verisign-grs.com/partner.html ) cocktail party invitation down from their web site?

VeriSign Registrar Partner Reception: A cocktail party to showcase VeriSign's Network Operations Center (NOC). VeriSign will provide tours of our NOC, complimentary beverages and heavy appetizers will be served.

Date: Friday, February 15th
Time: 7:30 p.m. - 9:30 p.m. ET
Location:
VeriSign Network Operations Center
21345 Ridgetop Circle
Sterling, VA 20166
Dress: Business Casual

Complimentary transportation will be provided by VeriSign. A bus will pick up guests in front of the Dulles Marriott at 7:00 pm ET. Return transportation will leave VeriSign facilities at 9:30pm ET.

R.S.V.P. to cbinko@verisign.com or Tel. +1-703-948-3877.

Re:This is what'll screw us all in the end

[Reality+Master+101]

Security through obscurity will never solve anything when used as the first line of defense.

Dude, it's the first line of defense, not the ONLY line of defense. Read the article.

There is nothing wrong with security through obscurity as one facet of security. It's when it's the only security that it's a problem.

Re:This is what'll screw us all in the end

[babbage]

Security through obscurity will never solve anything when used as the first line of defense.

Oh, I don't know about that. Sure, it's bad when it's the only line of defence, but as a mere "first" line I think it's perfectly reasonable. (Just as it's a reasonable defence to, say, have your web server misidentify itself, or to have an unlisted phone number, or what have you.) As long as the layers of security behind this first one are robust, obscurity is perfectly reasonable as a front line defense.

If I was them...

No offence, but thank god you're not, buddy... :)

Secrets have never worked in security before

Oh baloney, they work all the time. Maybe you should consider putting down the standard /. party line and try putting some of this hyperbole into perspective. If secrets have never worked then why is the story of the Trojan Horse so famous? If secrets have never mattered then why is the element of surprise considered to be so tactically valuable? If secrets didn't matter to security then why did Nixon have those 18 minutes of blank tape, and why did Cheney turn in thousands of blank documents, and why do all governments bother classifying things as top secret?

If you're in a position of just stupendously overwhelming strength -- like say if the US were to invade Bermuda tomorrow -- then no I don't suppose you need to be all that secretive about things. For everyone else, in every other situation, secrets can have an important role to play. Even if trolls would suggest otherwise.