Security through obscurity is a free way to increase your security stochastically. It eliminates low-effort attacks, lowering noise, allowing you, the security professional, to focus on detecting high-effort attacks. Of course we shouldn't implement some security through obscurity and call it a day, but people who dismiss security through obscurity as not worth implementing at all are also foolish.
