Re: Continuous brute force attempt from own server !!! (OT question)

To: debian-user@lists.debian.org
Subject: Re: Continuous brute force attempt from own server !!! (OT question)
From: Henrique de Moraes Holschuh <hmh@debian.org>
Date: Sat, 27 Jul 2013 22:39:19 -0300
Message-id: <[🔎] 20130728013919.GB20981@khazad-dum.debian.net>
In-reply-to: <[🔎] 20130727222740.GA19973@big>
References: <[🔎] 20130726121236.1b8213ba@shiva.selfip.org> <[🔎] 51F238BF.5050509@online.de> <[🔎] 20130726143527.23b9c829@shiva.selfip.org> <[🔎] 51F24778.1080008@gmail.com> <[🔎] 26072013212420.2e0af51bd8c5@desktop.copernicus.demon.co.uk> <[🔎] 51F38D41.1000606@gmail.com> <[🔎] 20130727115259.GA18454@copernicus.demon.co.uk> <[🔎] 20130727170629.GD1735@khazad-dum.debian.net> <[🔎] 20130727222740.GA19973@big>

On Sat, 27 Jul 2013, Paul E Condon wrote:
> In this case, what is a 'security domain'?  

It is a partition or a group (actually, a "set").  When you have several
services/hosts that have different attributes from an information
security[1] perspective, you should place them in different partitions (aka
domains, realms, zones).

You usually have important partitions/domains as segregated as possible
(including at the hardware level) from any others.  This is always done to
minimize risk and contain damage, but it can also be done for simple reasons
such as to keep separate administrative domains[2] segregated.

> Don't make fun of me. I really haven't, to my memory, come across the
> term, before.

I am unsure whether this is a widely-used term or not.  I should have added
a definition anyway.  Sorry about that.

[1] this actually means a lot more than just "keep people away from my
stuff", see http://en.wikipedia.org/wiki/Information_security#Key_concepts
for details.

[2] "domain" here has the "partition" or "set" meaning.  Stuff that is
controlled / owned / operated / managed by or for different parties / teams
/ customers are probably in separate administrative domains.

-- 
  "One disk to rule them all, One disk to find them. One disk to bring
  them all and in the darkness grind them. In the Land of Redmond
  where the shadows lie." -- The Silicon Valley Tarot
  Henrique Holschuh

Reply to:

References:
- Continuous brute force attempt from own server !!!
  - From: J B <bakshi12@gmail.com>
- Re: Continuous brute force attempt from own server !!!
  - From: benjamin kent <thepaladin@online.de>
- Re: Continuous brute force attempt from own server !!!
  - From: J B <bakshi12@gmail.com>
- Re: Continuous brute force attempt from own server !!!
  - From: Lars Noodén <lars.nooden@gmail.com>
- Re: Continuous brute force attempt from own server !!!
  - From: Brian <ad44@cityscape.co.uk>
- Re: Continuous brute force attempt from own server !!!
  - From: Lars Noodén <lars.nooden@gmail.com>
- Re: Continuous brute force attempt from own server !!!
  - From: Brian <ad44@cityscape.co.uk>
- Re: Continuous brute force attempt from own server !!!
  - From: Henrique de Moraes Holschuh <hmh@debian.org>
- Re: Continuous brute force attempt from own server !!! (OT question)
  - From: Paul E Condon <pecondon@mesanetworks.net>

Prev by Date: root.root and netdev group for /dev/net/tun ?
Next by Date: no xorg
Previous by thread: Re: Continuous brute force attempt from own server !!! (OT question)
Next by thread: Re: Continuous brute force attempt from own server !!! (OT question)
Index(es):
- Date
- Thread