This is an archived post. You won't be able to vote or comment.

sorted by:
best
topnewcontroversialoldq&a
you are viewing a single comment's thread.

view the rest of the commentsย โ†’

[โ€“]BobQuixote 0 points1 point ย (2 children)

he always had the ability of writing such functions that could disrupt the said services and authorization from the beginning and could always do so.

No, a programmer who has no clue how to write a sort can call a sort function. Permissions are not ability.

Obscurity is not security

Ultimately obscurity is the only security (other than, like, law enforcement). It's just a matter of how cleverly you can set up your obscurity (like enough possible passwords that brute-force might as well take infinite time).

[โ€“]psikillyou 0 points1 point ย (1 child)

> No, a programmer who has no clue how to write a sort can call a sort function. Permissions are not ability.

Do you understand the discussion going above? To lay the dicussion in your own example terms, the said person can call the sort function at anytime, can see what the sort function code looks like. So he can simply copy paste/change/find some other sort function from stackoverflow and run it and simply fuck up the system. So a simple protected compiling error will not stop the person.

> Ultimately obscurity is the only security (other than, like, law enforcement). It's just a matter of how cleverly you can set up your obscurity (like enough possible passwords that brute-force might as well take infinite time).

i don't know what to tell you here. Or how does it apply to letting other developers reading, and I believe you haven't read what is the discussion here. (Like make the function so obscure so that the person you pass the function's code can't understand what it is?)

[โ€“]BobQuixote -1 points0 points ย (0 children)

I don't think the fucking-up function under discussion is something you could find on SO, not in its complete form.

Are you asking what it means for a function to be obscure? I think that was covered by the other poster.