Day: June 13, 2007

Too (little) paranoid ?

encrypted everything the way d-i does it (boot unencrypted – rest dm-crypt+LUKS). Check strong passphrase for encryption. Check seperate laptop ssh key. Check sshd only public daemon running. keylogin only. Check other stuff that ‘listens’ either killed or firewalled away.

bikeshedding

Bastian suggests on planet that we need to spend even more time on bikeshedding. Please. Let us move on. ps.: kblogger seems to be able to do the job.

Top