[Top][All Lists]
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: [Monotone-devel] netsync transport encryption?
From: |
Jeronimo Pellegrini |
Subject: |
Re: [Monotone-devel] netsync transport encryption? |
Date: |
Wed, 25 Oct 2006 06:02:30 -0300 |
User-agent: |
Mutt/1.5.13 (2006-08-11) |
On Wed, Oct 25, 2006 at 11:53:33AM +1000, Daniel Carosone wrote:
> On Tue, Oct 24, 2006 at 08:07:32PM -0500, Timothy Brownawell wrote:
> > > VPN - extra overhead and installation can be clumsy.
> >
> > Yeah, but if your code is secret enough that you're worried about people
> > using packet sniffing to get at deltas (not even complete files), then
> > you probably already *have* a VPN set up to redirect everything you do
> > through the corporate firewall anyway...
>
> *And* you better have disk encryption for your database and
> workspaces,
If you store the database in a server that you don't trust (or that you
think people may break into), then not even disk encryption helps much,
since your passwords need to show up in RAM eventually for the server
to be useful. That was why I started Apso. Encrypt everything locally
with a shared key, and distribute keys using a PGP-like PKI, using
the VC system itself.
But if the server is trusted, disk encryption is fine. (Personally, if
it is something really secret, I wouldn't trust any datacenter to handle
my server except if their sysadmins could have access to my content or to
the keys used to encrypt it).
As I used to hear from someone, "it all depends on your degree of
paranoia..."
J.
- [Monotone-devel] netsync transport encryption?, Cem Karan, 2006/10/24
- Re: [Monotone-devel] netsync transport encryption?, Jeronimo Pellegrini, 2006/10/24
- Re: [Monotone-devel] netsync transport encryption?, Timothy Brownawell, 2006/10/24
- Re: [Monotone-devel] netsync transport encryption?, Richard Levitte - VMS Whacker, 2006/10/25
- Re: [Monotone-devel] netsync transport encryption?, Nathaniel Smith, 2006/10/25
- Re: [Monotone-devel] netsync transport encryption?, Richard Levitte - VMS Whacker, 2006/10/25
- Re: [Monotone-devel] netsync transport encryption?, Cem Karan, 2006/10/25
- Re: [Monotone-devel] netsync transport encryption?, Richard Levitte - VMS Whacker, 2006/10/25
- Re: [Monotone-devel] netsync transport encryption?, Dirk Hillbrecht, 2006/10/25
- Re: [Monotone-devel] netsync transport encryption?, Richard Levitte - VMS Whacker, 2006/10/25
- [Monotone-devel] Re: netsync transport encryption?, Bruce Stephens, 2006/10/25