My comment was sincere but was directed at Chris Pimberton, who I thought was really funny.
I have nothing against Always Learning other than the fact that he hijacked this thread from the original question that I asked... On Oct 11, 2014 7:27 AM, "Valeri Galtsev" galtsev@kicp.uchicago.edu wrote:
On Sat, October 11, 2014 9:08 am, Igal Sapir wrote:
On my short list for entertainment/stand up comedy :p
Have you ever heard someone saying "paranoia is on my sysadmin's job description"? If you don't have an attitude described by that word you better don't run severs. Not that I would say they will end up compromised, but the chance of compromise is way higher if you don't exercise "paranoia" when setting up your server. I bet any sysadmin manual or book has security chapter which stresses it in similar wording. A few I learned from did. So, in my book Mr. Always Learning is more suitable as sysadmin than a person of an attitude you expressed. No offense, just think it over, thinking it over may help you one day.
Just my $0.02
Valer
On Oct 11, 2014 7:03 AM, "Valeri Galtsev" galtsev@kicp.uchicago.edu wrote:
On Fri, October 10, 2014 7:20 pm, William Woods wrote:
Whats your mailing address, I will send you some more tinfoil.
On Oct 10, 2014, at 5:35 PM, Always Learning centos@u62.u22.net
wrote:
On Fri, 2014-10-10 at 16:31 -0500, Chris Pemberton wrote:
Did either of you think to crack open your laptop cases and check
for
embedded key logging hardware on the MB.. it could be in there...
that
tiny mislabeled capacitor near the USB bus would be a good hiding place... or have you been blindly typing away on those keyboards for several years...? Does the firmware for your wireless card ever overstep its bounds and poke around a bit... perhaps to collect info from the key logger? That same wireless firmware could probably
have
access to your network without your knowledge... Isn't it the government that stipulates that the firmware be distributed in binary form only...? And be sure to "mute" the mic on your machine... they'd
never
be smart enough to use the speakers in reverse to accomplish the
same
thing :)
I avoid using Wifi. My keyboards are changed frequently (one of the reasons is some are allergic to tea). My home router is an
inquisitive
Asus AC68U but Wifi is disabled. My trusted firewall is iptables. My multiple backups are significant distances away. My HDDs are on
pull-out
caddies. I read all the generated daily reports.
When relatives come, a new name and password are created for Wifi
access
which does not broadcast its presence. There is no access to the LAN.
If anyone is serious about security, it is not the keyboards one
should
worry about but another item that is so common it is always 'overlooked'. No further comment :-)
If I were to hire sysadmin or computer security officer you definitely will be on my short list, much preferred candidate.
Valeri
++++++++++++++++++++++++++++++++++++++++ Valeri Galtsev Sr System Administrator Department of Astronomy and Astrophysics Kavli Institute for Cosmological Physics University of Chicago Phone: 773-702-4247 ++++++++++++++++++++++++++++++++++++++++ _______________________________________________ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
++++++++++++++++++++++++++++++++++++++++ Valeri Galtsev Sr System Administrator Department of Astronomy and Astrophysics Kavli Institute for Cosmological Physics University of Chicago Phone: 773-702-4247 ++++++++++++++++++++++++++++++++++++++++ _______________________________________________ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos