On Sat, October 11, 2014 9:08 am, Igal Sapir wrote: > On my short list for entertainment/stand up comedy :p Have you ever heard someone saying "paranoia is on my sysadmin's job description"? If you don't have an attitude described by that word you better don't run severs. Not that I would say they will end up compromised, but the chance of compromise is way higher if you don't exercise "paranoia" when setting up your server. I bet any sysadmin manual or book has security chapter which stresses it in similar wording. A few I learned from did. So, in my book Mr. Always Learning is more suitable as sysadmin than a person of an attitude you expressed. No offense, just think it over, thinking it over may help you one day. Just my $0.02 Valer > On Oct 11, 2014 7:03 AM, "Valeri Galtsev" <galtsev at kicp.uchicago.edu> > wrote: > >> >> On Fri, October 10, 2014 7:20 pm, William Woods wrote: >> > Whats your mailing address, I will send you some >> > more tinfoil. >> > >> > On Oct 10, 2014, at 5:35 PM, Always Learning <centos at u62.u22.net> >> wrote: >> > >> >> >> >> On Fri, 2014-10-10 at 16:31 -0500, Chris Pemberton wrote: >> >> >> >>> Did either of you think to crack open your laptop cases and check >> for >> >>> embedded key logging hardware on the MB.. it could be in there... >> that >> >>> tiny mislabeled capacitor near the USB bus would be a good hiding >> >>> place... or have you been blindly typing away on those keyboards for >> >>> several years...? Does the firmware for your wireless card ever >> >>> overstep its bounds and poke around a bit... perhaps to collect info >> >>> from the key logger? That same wireless firmware could probably >> have >> >>> access to your network without your knowledge... Isn't it the >> >>> government >> >>> that stipulates that the firmware be distributed in binary form >> >>> only...? And be sure to "mute" the mic on your machine... they'd >> never >> >>> be smart enough to use the speakers in reverse to accomplish the >> same >> >>> thing :) >> >> >> >> I avoid using Wifi. My keyboards are changed frequently (one of the >> >> reasons is some are allergic to tea). My home router is an >> inquisitive >> >> Asus AC68U but Wifi is disabled. My trusted firewall is iptables. My >> >> multiple backups are significant distances away. My HDDs are on >> pull-out >> >> caddies. I read all the generated daily reports. >> >> >> >> When relatives come, a new name and password are created for Wifi >> access >> >> which does not broadcast its presence. There is no access to the LAN. >> >> >> >> If anyone is serious about security, it is not the keyboards one >> should >> >> worry about but another item that is so common it is always >> >> 'overlooked'. No further comment :-) >> >> >> >> If I were to hire sysadmin or computer security officer you definitely >> will be on my short list, much preferred candidate. >> >> Valeri >> >> ++++++++++++++++++++++++++++++++++++++++ >> Valeri Galtsev >> Sr System Administrator >> Department of Astronomy and Astrophysics >> Kavli Institute for Cosmological Physics >> University of Chicago >> Phone: 773-702-4247 >> ++++++++++++++++++++++++++++++++++++++++ >> _______________________________________________ >> CentOS mailing list >> CentOS at centos.org >> http://lists.centos.org/mailman/listinfo/centos >> > _______________________________________________ > CentOS mailing list > CentOS at centos.org > http://lists.centos.org/mailman/listinfo/centos > ++++++++++++++++++++++++++++++++++++++++ Valeri Galtsev Sr System Administrator Department of Astronomy and Astrophysics Kavli Institute for Cosmological Physics University of Chicago Phone: 773-702-4247 ++++++++++++++++++++++++++++++++++++++++