security by obscurity? you know, with a JTAG adapter and a bit of knowledge, one can read the onboard flash from those plugs too. so, probably a better approach is to have a system which doesn't expose your data when the disk is compromised. The simplest example is SSH with public key authentication and authentication forwarding (-A flag).
From: Silvan Gebhardt gebhardt@openfactory.ch To: swinog@lists.swinog.ch Sent: Friday, June 1, 2012 10:28 PM Subject: Re: [swinog] hosting for 1 powersupply with lan port
Hello Stanislav and List
There are two reasons why I want this plug PC:
- security through obscurity. if someone by whatever means take
this thing apart - an alix is very easy to dump the content off it. a VPS is even worse.
- such a Plug PC has at least double the ram an alix has, the
moment you want to also run mutt on it it starts to become a bit relevant, with a few dozend openvpn client connections as well.... I do run a lot of Alixes globally already, I do know the whole box quite good.
I'd love to keep this box in switzerland as well ;)
Thanks for the input, mosh will be a topic I will update the ML if
the interest is there - I'm looking forward to see how it behaves on sat connections etc.
Silvan
Am 01.06.2012 10:36, schrieb Stanislav Sinyagin:
but actually for your purpose, I would just buy the cheapest VPS at http://www.buildyourvps.com/
I've got one for about $35 a year. The machine (or probably the network) is heavily oversubscribed, but you get a virtual machine on a dedicated IP address.
From: Stanislav Sinyagin ssinyagin@yahoo.com To: "swinog@swinog.ch" swinog@swinog.ch Sent: Friday, June 1, 2012 10:24 AM Subject: Re: [swinog] hosting for 1 powersupply with lan port
Silvan, I would highly recommend pcengines.ch instead. They are quickly available (usually shipped the next day after ordering) from a Swiss store, and so far they are the cheapest linux boxes that I could find. I'm using them exactly for the same purpose - as ssh jumphosts :)
http://linux.voyage.hk/%C2%A0 is a flavor of Debian specifically tailored for these boxes. It mounts the root in read-only mode by default, so your CF storage is written only when needed.
here I put a few related notes in my blog: http://txlab.wordpress.com/tag/voyage-linux/
From: Silvan M. Gebhardt gebhardt@openfactory.ch To: swinog@swinog.ch Sent: Thursday, May 31, 2012 11:10 PM Subject: [swinog] hosting for 1 powersupply with lan port
Hi Swinogers,
I'm currently thinking about deploying a Sheevaplug or similar with mosh (http://mosh.mit.edu) as a login jumphost since I am several hours in mobile mode every day and I need a space outside of my network to host a *jump host*
please contact me offlist and offer me housing for something like that: http://www.plugcomputer.eu/
All I am taking up is some bandwith (expected bandwith in average probably 1mbit max, half of it for keepalives for outbound vpn tunnels, Power consumption apparently less than 10watts.
Need v6 and v4 connection, 1 IP each, public, not firewalled, 1 Plug in the power strip
Since this is a rather
non-standard thing I'm looking for, but I need it in a datacenter outside my infrastructure, I thought it's best to ask here.
Btw, for anyone experienced already or looking into mosh, looking forward for exchange here
Good Evening!
Silvan
swinog mailing list swinog@lists.swinog.ch http://lists.swinog.ch/cgi-bin/mailman/listinfo/swinog
swinog mailing list swinog@lists.swinog.ch http://lists.swinog.ch/cgi-bin/mailman/listinfo/swinog
swinog mailing list swinog@lists.swinog.ch http://lists.swinog.ch/cgi-bin/mailman/listinfo/swinog
swinog mailing list swinog@lists.swinog.ch http://lists.swinog.ch/cgi-bin/mailman/listinfo/swinog