Navigation

Toolbox

In other languages

From techmeet

9= Security and Privacy =

http://www.techmeet.org/txt/NLTechmeet/Security

minimal or most important issues for servers:

• one item is password security, lots of password checking

 also sugested to use a special PAM module

• ssh knowledge requirement (key exchanges using ssh-keygen)
• follow your security updates
• system/service separation by using different (virtual) servers

 apache mod_user to let websites run as seperate users

• monitoring, because you can't prevent -everything-, never 100% secure

 analyze strange happenings in your logs, etc.
 

Distributed or centralised data

• Centralised data has one point for security services to attack
• Distribution have locations for storing encypted data

Discussion, examples of central servers and attempts to distribute... Example, 'nest' based on dyne:bolic, encrypted file system live i/o,

Issues of use of anonomyzed systems. Use by 'evil' people. Hosting an anonymous remailer. Huge increase in volume of bandwidth. Lots of spam. People running Tor servers have the same issues. Only possibility to throttle bandwidth usage. Tor server risking server to more than the benifits, but there are lots and lots of good things for using it. Who are running the servers?

Views

• Page
• Discussion
• View source
• History