From: lucio@proxima.alt.za
To: 9fans@9fans.net
Subject: Re: [9fans] running plan9 : an ideal setup?
Date: Wed, 19 Nov 2014 05:50:29 +0200 [thread overview]
Message-ID: <0abee76043156cc59a435a19fa3c6b08@proxima.alt.za> (raw)
In-Reply-To: <6dcda8d871ab3643e001b3583cbf875e@lilly.quanstro.net>
> i think reality
> booges things up, and it doesn't really work out.
More specifically, an auth server can provide very tight security, but
where such is not needed, it is too tempting to run services on it as
it is the most convenient place to do it from. Once you have enough
power behind the auth server to run one service, you no longer have
the security benefits. Discipline is demanded and the price is a bit
steep.
I know because for a long time I ran an auth server on what would be
considered a toy even back then, but once it failed, it was never
re-deployed.
Reading some of the scary stuff the NSA seems to be getting up to,
though, it is nice to know that your border equipment (not your
private auth server) is unlikely ever to be "owned" by NSA spooks.
Lucio.
PS: I do have a dedicated auth server, but electricity supply
constraints cause it to stay off most of the time, leading to bit rot.
The unreliabilty of the Internet link means it cannot act as auth
server for my public equipment, so that problem needs to be solved
first. Running it off a photovoltaic/battery source is definitely the
next plan.
-------------------------------------------------------------------------------------
This email has been scanned by the MxScan Email Security System.
-------------------------------------------------------------------------------------
next prev parent reply other threads:[~2014-11-19 3:50 UTC|newest]
Thread overview: 59+ messages / expand[flat|nested] mbox.gz Atom feed top
2014-11-18 13:29 Mayuresh Kathe
2014-11-18 13:53 ` dante
2014-11-18 14:11 ` Richard Miller
2014-11-18 14:28 ` dante
2014-11-27 20:57 ` Dante
2014-11-28 6:10 ` erik quanstrom
2014-11-28 6:54 ` David du Colombier
2014-11-28 8:42 ` Dante
2014-11-28 9:12 ` Mats Olsson
2014-11-28 9:18 ` Dante
2014-11-28 9:17 ` Richard Miller
2014-11-28 9:26 ` Dante
2014-11-28 13:20 ` erik quanstrom
2014-11-28 13:45 ` David du Colombier
2014-11-18 15:42 ` Kurt H Maier
2014-11-18 16:14 ` dante
2014-11-18 17:02 ` Aram Hăvărneanu
2014-11-18 20:29 ` Richard Miller
2014-11-18 21:28 ` Mats Olsson
2014-11-18 22:09 ` dante
2014-11-19 8:56 ` Mats Olsson
2014-11-26 17:16 ` Mats Olsson
2014-11-26 17:41 ` Dante
2014-11-26 17:56 ` Mats Olsson
2014-11-26 18:16 ` Mats Olsson
2014-11-26 18:41 ` Dante
2014-11-18 22:11 ` Skip Tavakkolian
2014-11-18 22:23 ` Steve Simon
2014-11-19 1:57 ` erik quanstrom
2014-11-19 5:36 ` Skip Tavakkolian
2014-11-19 5:59 ` lucio
2014-11-19 14:36 ` erik quanstrom
2014-11-19 15:34 ` Aram Hăvărneanu
2014-11-20 6:02 ` Anthony Sorace
2014-11-20 14:37 ` erik quanstrom
2014-11-20 18:43 ` Anthony Sorace
2014-11-21 14:34 ` erik quanstrom
2014-11-21 14:44 ` Anthony Sorace
2014-11-21 17:31 ` Bakul Shah
2014-11-22 18:06 ` erik quanstrom
2014-11-25 6:59 ` Bakul Shah
2014-11-25 11:10 ` erik quanstrom
2014-11-25 11:14 ` erik quanstrom
2014-11-25 13:52 ` Anthony Sorace
2014-11-25 14:26 ` erik quanstrom
2014-11-19 14:33 ` erik quanstrom
2014-11-19 20:05 ` Bakul Shah
2014-11-19 20:40 ` Tom Ivar Helbekkmo
2014-11-21 6:34 ` Harri Haataja
2014-11-19 2:04 ` erik quanstrom
2014-11-19 3:50 ` lucio [this message]
2014-11-19 9:40 ` Steve Simon
2014-11-19 9:50 ` dante
2014-11-19 10:18 ` Steve Simon
2014-11-19 10:27 ` dante
2014-11-19 18:55 ` Quintile
2014-11-19 10:36 ` lucio
2014-11-20 6:05 ` Anthony Sorace
2014-11-20 6:13 ` lucio
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=0abee76043156cc59a435a19fa3c6b08@proxima.alt.za \
--to=lucio@proxima.alt.za \
--cc=9fans@9fans.net \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox;
as well as URLs for NNTP newsgroup(s).