←back to thread

341 points hlandau | 1 comments | | HN request time: 0s | source
Show context
abigail95 ◴[] No.37962300[source]
> What would a perfect attacker do?

If you had physical access to the computer, some sort of bus interception to exfiltrate data from the machine.

replies(2): >>37962373 #>>37963714 #
whalesalad ◴[] No.37962373[source]
extremely difficult to get physical access in a datacenter
replies(5): >>37962416 #>>37962421 #>>37962655 #>>37963217 #>>37963509 #
LeoPanthera ◴[] No.37962421[source]
I would suggest that if you are the police, you can break into a datacenter with a flash of a badge. I can't imagine many would attempt to stop you.
replies(3): >>37962600 #>>37963230 #>>37964311 #
mjevans ◴[] No.37962600[source]
I would hope they at least:

* Require a copy of the badge number, and verify that this officer is assigned and expected to be at this business right now.

* Require them to sign into and out of the site.

* Annotate which systems / compromises are in place.

- That all of the above MIGHT be sealed under a court order; I would hope any such order has an automatic 'sunset' date, and possibly renewal upon review by a different judge.

replies(3): >>37962663 #>>37963155 #>>37974369 #
1. immibis ◴[] No.37974369[source]
You would expect that at AWS, but Hetzner is a low-cost operation.