Ivan Shmakov wrote:
Do I understand correctly that the netbooting Debian Live is
currently inherently insecure against both eavesdroppers and
intruders?
just adding to what others have already said:
once we have brought live-initramfs 2.x in a reasonable state, it will
be very easily extensib
> Tzafrir Cohen writes:
>> Do I understand correctly that the netbooting Debian Live is
>> currently inherently insecure against both eavesdroppers and
>> intruders?
> PXE is indeed inherently insecure.
Well, it's not that bad when gPXE is considered:
>> I see that even if the
On Mon, Nov 16, 2009 at 10:44:38PM +0600, Ivan Shmakov wrote:
> Do I understand correctly that the netbooting Debian Live is
> currently inherently insecure against both eavesdroppers and
> intruders?
PXE is indeed inherently insecure.
>
> I see that even if the gPXE opti
> Richard Nelson writes:
>> Do I understand correctly that the netbooting Debian Live is
>> currently inherently insecure against both eavesdroppers and
>> intruders?
[...]
> Well you could use mac addresses and dhcp for some layer of security
Unfortunately, the MAC addresses a
Greetings,
On Mon, Nov 16, 2009 at 10:44 AM, Ivan Shmakov wrote:
> Do I understand correctly that the netbooting Debian Live is
> currently inherently insecure against both eavesdroppers and
> intruders?
>
> I see that even if the gPXE option to securily check the kern
Do I understand correctly that the netbooting Debian Live is
currently inherently insecure against both eavesdroppers and
intruders?
I see that even if the gPXE option to securily check the kernel
and initramfs images after downloading is used, NFS has still
