According to Steve Lipner, a security guy at Microsoft, security through obscurity is OK after all. Lipner argues that nobody reviews open source code anyway, so source may as well be closed to prevent malicious people from finding security holes. Not only does this fly in the face of conventional wisdom (not that conventional wisdom is worth anything), but also against recorded history.