[Gllug] news mirror sites

Bruce Richardson itsbruce at uklinux.net
Mon Jun 28 15:12:11 UTC 2004


On Mon, Jun 28, 2004 at 02:21:33PM +0100, Jack wrote:
> > That would be fairly standard for Internet cafes that use Windows on the
> > desktops.  They often have a system that wipes and reinstalls the
> > hardisk from a prepared image when the user logs out.
> > 
> > It's no more insecure than letting people connect their own laptops to
> > the network.
> 
> Surely not?  People who connect their own laptops can sniff other
> people's traffic, but not (for example) their ssh connections.

A laptop introduced to a typical Internet cafe can actually be used for
quite a bit of mischief.  You could run your own DHCP and DNS services,
poison arp caches etc so as to enable a variety of man-in-the-middle
attackes.  IME most Internet cafes are not running any IDS applications.

> However,
> if you are logging on using a compromised computer containing spyware,
> not even your ssh connections are safe.

If the workstation is re-imaged after each use and the image itself is
oncontaminated, then the workstation is only going to contain spyware if
you install it yourself during the course of your session.  This leaves
it as secure as you choose to make it.

-- 
Bruce

Nostalgia isn't what it used to be.
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 261 bytes
Desc: Digital signature
URL: <http://mailman.lug.org.uk/pipermail/gllug/attachments/20040628/7f9ca43d/attachment.pgp>
-------------- next part --------------
-- 
Gllug mailing list  -  Gllug at gllug.org.uk
http://lists.gllug.org.uk/mailman/listinfo/gllug


More information about the GLLUG mailing list