Drew wrote: > In my case, the primary attack vector for hackers getting at my > servers is via the web. Because I host primarily personal websites on > my servers, the hackers motivation for breaking into my server (aside > from 'it's there') is to turn the machine into a bot-net or host some > viagra phishing sites on it. I'm in much the same situation, and would like to protect myself to a minimal extent. But I don't understand how a usb token (below) would help. I'm probably showing my ignorance. (The only protection I take is to run fail2ban.) > The concern, for me, is more about remote compromise then about > physical theft of my usb token. A russian hacker who want's another > compromised machine for his bot-net or phishing ring is probably not > going to go to the effort of physically flying over here from Europe > and spend the time needed to track me down, break into my office, and > steal my usb token. He's more likely to move onto another target one > of his script-kiddies found for him. -- Timothy Murphy e-mail: gayleard /at/ eircom.net tel: +353-86-2336090, +353-1-2842366 s-mail: School of Mathematics, Trinity College Dublin