> Security through obscurity: the oldest joke in the security book.
>
> No surprise here that huge government organizations haven't got the joke
> yet.
>
> Very sad.

Well, you can see where they're coming from. If obscurity is just that
much cheaper, and the risk (in their opinion) is worth it, then it's
not necessarily a bad decision. Adding secure channels where none need
to be would be overengineering, and this being the military, any
engineering effort is expensive.
So the point isn't that they were trying to be secure by being
obscure... the problem is that they didn't think they needed to be
secure at all.
-- 
http://www.piclist.com PIC/SX FAQ & list archive
View/change your membership options at
http://mailman.mit.edu/mailman/listinfo/piclist