[Gllug] Cloud computing ( was Re: Linux Petition )
Andy Smith
andy at strugglers.net
Sat Apr 28 18:05:00 UTC 2012
Hello,
On Sat, Apr 28, 2012 at 03:59:56PM +0100, JLMS wrote:
> But one is supposed to be encrypting communications also (VPN, ssh, SSL, etc).
>
> I don't see what is left uncovered ...
The keys for your encrypted data exist in the memory of the virtual
machine, which is readable by whoever has access to the metal.
I would say however that most attacks are simplistic and that
encrypting data prevents a lot of the simple attacks.
e.g. the recent Linode exploit where many tens of thousands of $
equivalent of bitcoins were stolen relied upon the attacker using a
bug in Linode's web interface to shut the VPS down and reset its
root password. That wouldn't have worked if the filesystems were
encrypted and also would not have worked if the actual bitcoin data
files were encrypted.
Cheers,
Andy
--
http://bitfolk.com/ -- No-nonsense VPS hosting
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 205 bytes
Desc: Digital signature
URL: <http://mailman.lug.org.uk/pipermail/gllug/attachments/20120428/4ccd1f99/attachment.pgp>
-------------- next part --------------
--
Gllug mailing list - Gllug at gllug.org.uk
http://lists.gllug.org.uk/mailman/listinfo/gllug
More information about the GLLUG
mailing list