Michael Williams wrote:
>
>> Who is 'they' and why are they providing the server for your project?
>> If you don't trust the machine administrator you should probably move
>> elsewhere.
>
> "They" is anyone interested in taking our data. You think TJ Maxx, and
> Anthem BCBS didn't trust their hosting?
I don't think every individual working for those companies trying to
come up with unique ways to work around company policies is the correct
solution to that issue.
> Finding someone you trust is
> less relevant than you think. The point is, I am accountable for my
> data, so it's up to me to find the absolute most secure means possible
> (not even necessarily currently available) while maintaining my sanity.
> I'm just tapping the community for ideas and input. Thanks.
The relevant point here is that if you don't trust the machine
administrator you can't trust anything on it including any means that
you might use to supply an encryption key. Wherever the server runs it
must have access to unencrypted data and that can't happen on a machine
you don't trust. There probably are ways to have encrypted storage,
mounted only by a machine you control and trust where you run the
server, but then you lose any intelligence on this network traffic since
it will be treated like raw filesystem storage. It seems like there
should be a way to do this with vmware but a sufficiently determined
administrator of the physical host could probably intercept your
passphrase/key exchange there too - and you'd need another IP address
for the VM running the server.
--
Les Mikesell
lesmikesell@gmail.com
---------------------------------------------------------------------
To unsubscribe, e-mail: users-unsubscribe@subversion.tigris.org
For additional commands, e-mail: users-help@subversion.tigris.org
Received on Wed Jun 20 17:56:34 2007