Comment Re:Maybe no security at all (Score 0) 557
So I guess, the software equivalent of that would be to not leave expensive data that could interest people on networked box,
I can just imagine what this would do to the accounting department.
"Did you finish invoice 200359302?"
"Yup, it's filed in folder 200359 in the left cabinet, but I think janet took it out, so you'll have to ask her."
Of course the cabinet would get jammed every once in a while and they'd have to call tech support to unjam the door.
and make as much as your sensitive data as possible less sensitive, by simply publishing it.
Like publishing a list of customers, projects, passwords and leads onto a website. Good thinking. You'll eliminate the competition with that mentality in no time... Oh, wait...
GPL code, for example, doesn't have to be protected.
GPL code is in fact protected because derivated works have to be GPL as well. But you'll protect your CVS tree from hackers to insert malicious code, won't you?
I'm not saying everything should be released, far from it, but there's a lot of "hidden" data that could just be left readable by everybody, by changing some company policies and being a tad more open about everything, thus removing the desire/need to hack the box it's hosted on.
Sure, the joke document Joe or Jane sent you yesterday doesn't need to be saved under some secret folder, but imagine all your company email being available to the general public.
Take a look at the documents that you keep at your company: invoices, offers, customers, projects, budgets,
Really sensitive data like VISA card numbers, identity card data, etc surely aren't meant to be passed around in the open.
