Warning messages.
Rich Derr
rhd-gpg@webdesigngroup.com
Mon, 28 Jun 1999 08:48:10 -0500
On Mon, Jun 28, 1999 at 10:36:46AM +0200, Werner Koch wrote:
> Rich Derr <rhd-gpg@webdesigngroup.com> writes:
>
> > Think outside the box. An attacker can walk into your server
> > room and walk out with your box without breaking root. I can
>
> Sure, but I would install a trojan horse which has the advantage that
> nobody will notice it (in most cases). A missing machine (or disk)
> should be detected very soon (in most cases).
Which is why I have my high-value filesystem encrypted. I'm
talking about a case where tamper-evidence, while important,
ultimately still leaves the user bankrupt.
Until encrypted swap space is as availible as encrypted
filesystems are -- and both could obviously stand a big boost in
availibility -- the warning has meaning.
--
Rich Derr, sysadmin Have ssh, Will Telecommute
Web Design Group www.webdesigngroup.com TEL: +1 312 951 6688