Re: [tlug] hello from a new / old member

["Stephen J. Turnbull" <stephen@example.com>]

>>>>> "Edward" == Edward Middleton <edward@example.com> writes:

    Edward> I guess if you have a static IP, I have given up hard
    Edward> coding semi-dynamic ip's into firewall rules because your
    Edward> ip inevitably changes at a time when you don't have
    Edward> physical access.

Any number of ways to get around that.

    >> I've also had keys compromised (not personally, but people who
    >> needed access to one of my machines).  Fortunately my system
    >> was not vulnerable to the rootkit du jour.

    Edward> Passwords can be compromised or weak, and for a password
    Edward> you don't necessarily have to compromise any of the client
    Edward> machines to get them.

I wasn't suggesting relying on passwords.  I was suggesting not
relying on keys if you don't need to.  Don't chain the door before
opening it; just don't open the door at all.

-- 
School of Systems and Information Engineering http://turnbull.sk.tsukuba.ac.jp
University of Tsukuba                    Tennodai 1-1-1 Tsukuba 305-8573 JAPAN
               Ask not how you can "do" free software business;
              ask what your business can "do for" free software.