Hacker News new | past | comments | ask | show | jobs | submit login

>The reason Nathan is not sharing more technical details is to protect the security of Red Hat users.

Security through obscurity?

If you want to be that loose with the definition, passwords and private keys are "security through obscurity".

Giving people time to patch before releasing the details of how it can be exploited isn't a bad security practice.

Responsible disclosure.

Obscurity does add security. It might not stop an attacker, but probably slows him down. That delay is sometimes important to have.

Guidelines | FAQ | Support | API | Security | Lists | Bookmarklet | Legal | Apply to YC | Contact