Re: [comp.security] Secure computers
Does this still protect against the popular "nuclear bomb" DoS attack?
------------------------------------------------
Ben Collins <b.m.collins@larc.nasa.gov>
UnixGroup Admin - NASA LaRC
On 5 Nov 1998, Manoj Srivastava wrote:
> Hi,
>
> >>>> "Matt" == Matthew Devney <mdevney@pilot.net> said:
>
> Matt> Take it off the network, unplug it, lock the case, encase it in
> Matt> 19 feet of concrete, and you can pretty much guarantee it'll be
> Matt> safe. But the security consultant will still worry.
>
> >>>> "Dennis" == "Dennis" <dennis0307@hotmail.com> said:
>
> Dennis> Be careful though ... I've heard some people complain about
> Dennis> marginal network performance with that configuration ...
>
>
> >>>> "Bachrach" == "Bachrach V1.0" <Bachrach@netreach.net> said:
>
> Bachrach> someone could still use some chemical reaction to eat
> Bachrach> through the concrete, and get at the computer. You could
> Bachrach> then take out the hard drive, and examine it under an
> Bachrach> electron microscope to figure out what was on it. (Even if
> Bachrach> it was encrypted, passworded, deleted, etc.)
>
>
> Correct. Eternal vigilance is the key. Take it off the
> network, unplug it, lock the case, encase it in a cube of concrete 20
> feet on a side. Then take the concrete block, and suspend it by a
> steel-cored hawser, hanging off an Steel A from, such that the cube
> is at least 20 feet off the ground. Install pressure sensers all
> around the A frame. Put the A frame and sensors on a fenced concrete
> compound about a 100 feet on a side, with bright lights on all
> corners and on each side, including a light at the top of the A fram,
> and one under neath the cube. Make sure that the hawser and the A
> frame are electrically secure (i.e., have a noncundoctor in the
> path).
>
> Put manned watch towers all around, with motiton detectors
> socketed into heavy machine guns. Make sure the guards on site can't
> turn off the defenses (keep the key in a bank vault offsite).
>
> Even then the system is not secure, but you are getting close.
>
> manoj
> --
> Beware of a dark-haired man with a loud tie.
> Manoj Srivastava <srivasta@acm.org> <http://www.datasync.com/%7Esrivasta/>
> Key C7261095 fingerprint = CB D9 F4 12 68 07 E4 05 CC 2D 27 12 1D F5 E8 6E
>
>
> --
> Unsubscribe? mail -s unsubscribe debian-user-request@lists.debian.org < /dev/null
>
>
Reply to: