[unisog] Admin Access to Servers
jwedgeco at uncc.edu
Wed Nov 15 18:58:04 GMT 2006
You can take it one step further and have the option of a bootable cd, a
bootable flash drive, or be ablke to boot the admin os under qemu.
To see what I mean, take a look at qemu-puppy
The qemu approach lets the admin use both desktops simulatenously.
You might also check out VMware ACE. One of their touted uses is for
running a secured guest VM on a semi-trusted machine.
Solaris & Linux Administrator
Mosaic Computing Group, College of Engineering
Phone: (704) 687-3514
From: unisog-bounces at lists.dshield.org
[mailto:unisog-bounces at lists.dshield.org] On Behalf Of Michael Holstein
Sent: Wednesday, November 15, 2006 10:52 AM
To: unisog at lists.dshield.org
Subject: Re: [unisog] Admin Access to Servers
What about distributing bootable linux/Bart's distributions that
incorporate all your security functions (obviously, you still need a VPN
and some sort of 2-factor auth).
Accomplishes the same thing as extra laptops, but lighter and cheaper.
When you make a new CD, you invalidate the old ones (there's a
laundry-list of ways to manage that), and would protect against all but
Michael Holstein CISSP GCIA
Cleveland State University
unisog mailing list
unisog at lists.dshield.org
More information about the unisog