From mboxrd@z Thu Jan  1 00:00:00 1970
Received: from pigeon.gentoo.org ([69.77.167.62] helo=lists.gentoo.org)
	by finch.gentoo.org with esmtp (Exim 4.60)
	(envelope-from <gentoo-user+bounces-77508-garchives=archives.gentoo.org@lists.gentoo.org>)
	id 1JeGhO-0007s2-3T
	for garchives@archives.gentoo.org; Tue, 25 Mar 2008 21:28:50 +0000
Received: from pigeon.gentoo.org (localhost [127.0.0.1])
	by pigeon.gentoo.org (Postfix) with SMTP id 71954E058A;
	Tue, 25 Mar 2008 21:28:47 +0000 (UTC)
Received: from smtp.gentoo.org (smtp.gentoo.org [140.211.166.183])
	by pigeon.gentoo.org (Postfix) with ESMTP id 42FC7E058A
	for <gentoo-user@lists.gentoo.org>; Tue, 25 Mar 2008 21:28:47 +0000 (UTC)
Received: from localhost (localhost [127.0.0.1])
	by smtp.gentoo.org (Postfix) with ESMTP id B602466E58
	for <gentoo-user@lists.gentoo.org>; Tue, 25 Mar 2008 21:28:46 +0000 (UTC)
X-Virus-Scanned: amavisd-new at gentoo.org
X-Spam-Score: -2.257
X-Spam-Level: 
X-Spam-Status: No, score=-2.257 required=5.5 tests=[AWL=0.342,
	BAYES_00=-2.599]
Received: from smtp.gentoo.org ([127.0.0.1])
	by localhost (smtp.gentoo.org [127.0.0.1]) (amavisd-new, port 10024)
	with ESMTP id N+8zK2eVn-UR for <gentoo-user@lists.gentoo.org>;
	Tue, 25 Mar 2008 21:28:40 +0000 (UTC)
Received: from ciao.gmane.org (main.gmane.org [80.91.229.2])
	(using TLSv1 with cipher AES256-SHA (256/256 bits))
	(No client certificate requested)
	by smtp.gentoo.org (Postfix) with ESMTP id 0203266F34
	for <gentoo-user@gentoo.org>; Tue, 25 Mar 2008 21:28:36 +0000 (UTC)
Received: from list by ciao.gmane.org with local (Exim 4.43)
	id 1JeGh2-0004Yf-K4
	for gentoo-user@gentoo.org; Tue, 25 Mar 2008 21:28:28 +0000
Received: from 84-72-81-46.dclient.hispeed.ch ([84.72.81.46])
        by main.gmane.org with esmtp (Gmexim 0.1 (Debian))
        id 1AlnuQ-0007hv-00
        for <gentoo-user@gentoo.org>; Tue, 25 Mar 2008 21:28:28 +0000
Received: from michael.schmarck by 84-72-81-46.dclient.hispeed.ch with local (Gmexim 0.1 (Debian))
        id 1AlnuQ-0007hv-00
        for <gentoo-user@gentoo.org>; Tue, 25 Mar 2008 21:28:28 +0000
X-Injected-Via-Gmane: http://gmane.org/
To: gentoo-user@lists.gentoo.org
From:  Michael Schmarck <michael.schmarck@habmalnefrage.de>
Subject: [gentoo-user]  Re: Recovering root password
Date: Tue, 25 Mar 2008 21:28:22 +0000 (UTC)
Message-ID:  <loom.20080325T212510-440@post.gmane.org>
References:  <49bf44f10803241330r3b447b4bkde7a062c73905b94@mail.gmail.com>  <200803251728.18275.alan.mckinnon@gmail.com>  <49bf44f10803250932q138a1627mba929844d0218689@mail.gmail.com>  <200803251904.04255.uwix@iway.na> <49bf44f10803251026r2be68be2ud30a5c07dbd64c5@mail.gmail.com>
Precedence: bulk
List-Post: <mailto:gentoo-user@lists.gentoo.org>
List-Help: <mailto:gentoo-user+help@lists.gentoo.org>
List-Unsubscribe: <mailto:gentoo-user+unsubscribe@lists.gentoo.org>
List-Subscribe: <mailto:gentoo-user+subscribe@lists.gentoo.org>
List-Id: Gentoo Linux mail <gentoo-user.gentoo.org>
X-BeenThere: gentoo-user@lists.gentoo.org
Reply-to: gentoo-user@lists.gentoo.org
Mime-Version:  1.0
Content-Type:  text/plain; charset=us-ascii
Content-Transfer-Encoding:  7bit
X-Complaints-To: usenet@ger.gmane.org
X-Gmane-NNTP-Posting-Host: main.gmane.org
User-Agent: Loom/3.14 (http://gmane.org/)
X-Loom-IP: 84.72.81.46 (Mozilla/5.0 (X11; U; Linux i686; de-DE; rv:1.8.1.12) Gecko/20080318 Iceweasel/2.0.0.12)
Sender: news <news@ger.gmane.org>
X-Archives-Salt: 7b58533b-3c73-49d0-b161-c216fb192bc8
X-Archives-Hash: 6c4d37f40047d59899ea4aae171fc247

Hi.

Grant <emailgrant <at> gmail.com> writes:

> >  > Would the type of filesystem encryption you guys are talking about
> >  > be unsuitable for a high-traffic server because of performance
> >  > considerations?
> >
> >  Yes, and it isn't necessary. You lock your servers away so that nobody
> >  has physical access to them.

I'd rather say: "... so that only trusted people have ...". But besides
this nitpick, I agree with you.

> 
> Sounds like co-location right?

No. Sounds like "build your own data center" :)

>  I just have a hosted dedicated
> machine.  

This means that you've got to trust the people hosting your
environment. If you don't, then move away! You know, they
could "easily"  install a traffic sniffers and whatnot.

> The thing that's always kept me from co-locating is hardware
> failure.  That would be a "my problem" in a co-located environment
> rather than a "their problem" right?

Depends on your contract, but generally speaking, you're right, yes.

Michael

-- 
gentoo-user@lists.gentoo.org mailing list