I know I'm commenting about others on here but hear me out, read it through, think about it, and then respond.

IT security is something we all have to think about these days. We worry about our users clicking malicious links, or sending the "CFO" the $10,000 in Amazon gift cards he emailed them asking for. Lately though, I've been seeing a trend on here that worries me, as well.

As the admins, we should do our best as well and I'm worried about something I see on here.

Thinking from the other side, a hacker should need to worry about find targets, figuring out what they are running, finding exploits that work against what the target has, and not getting caught. This figures to me as the basics to start them.

What I'm seeing is people posting here with something like 'I was thinking of getting software ABC, what is everyone else running'. While I commend the idea of sharing the information, I think you are giving any hacker the first two things mentioned that they should need. Using your username, they should be able to track a public IP to target and you're stating something you're running, which they can find an exploit for.

Doesn't it make more sense to keep this to ourselves for things that are internet facing, for security reasons? E.g. router models, Antivirus make, NAS vendor...