[Freedombox-discuss] Secure Server -- What is needed?

[Jack Wilborn]

Hi all...

I guess I got the OK, so I will start with what most of us have stated,
that we need some kind of list.  With that, we can dump what isn't needed
or put off, and attempt a structured development on the items that we do
need.

As a first thought we have 2 distinct attacks, the first is physical, the
box is stolen?   And it's a software attack over the network or?  I doubt
that someone will hang a terminal on it?

As I understand the idea is an outdoor box with the supporting antenna(s)
and power exposed to physical attacks.  Be it destruction where we can't do
much to being stolen and dissected, which is what I understand to be like
taking the system disk out and figuring out whats going on inside, again
via software or hardware structure.  Hardware structure could be found at
the manufacturer.

As a starting point, if all of us just bring up areas that are sensitive to
outside access maybe we can get a firm list available.  I realize my
corporate situation is completely different from a server on a stick with
hat, I did need to have an idea if I was on the right track or just using
good dope.

Some secure area tricks can be simple, such as another box (like a brick or
'Raspberry Pi'), within a few feet of the Freedom Box.  It could supply the
required information and be hidden from view in any direction.  I believe
that many are trying to run tests of software on small systems such as the
'Raspberry Pi' type devices.  Sounds unlikely, but this stuff does work.

That's my 2 cents for now, sorry I'm not flowing with ideas, but they come
when they want.

I'm hoping I can help, this project is needed and I'd be very proud to
assist in something that has the potential impact as this would.

Thanks for listening,

Jack
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.alioth.debian.org/pipermail/freedombox-discuss/attachments/20120305/00cfff6a/attachment.html>