-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 On 05/05/2011 08:46 AM, Mark McCullough wrote: > > On 2011 May 05, at 07:36, Aleksandar Ivanisevic wrote: > >> >> On 05/05/2011 02:31 PM, Nick Anderson wrote: >>> >>> I use rsync over ssh probably 95% of the time, 4% of the time rsync just >>> over local disk, and 1% of the time with the rsync protocol. >> >> You are not using it inside secure networks or you just think that the >> overhead of ssh is not worth setting up a rsyncd? > > No such thing as a secure network. Unless you are dealing with a physically > isolated network (and probably not even then), always assume the bad guy has > access to your network. This is one of the basic security lessons I'm having > to reteach over and over. "But we have a firewall" is not an excuse for > lessening your security one bit.
I agree with Mark here, especially if the path of least resistance is to use the secure mechanism (I think its less work to use ssh, its more secure, and I am lazy. Not often I get to reconcile all of those at the same time). If its a small amount of data the ssh overhead isn't a problem, if its a lot of data sometimes i will trade some security for speed and flip ssh to use blowfish. - -- Nick Anderson <n...@cmdln.org> -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.10 (GNU/Linux) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org/ iQEcBAEBCAAGBQJNwrHBAAoJEO89q5kwvK+d+nIH/2s9h7889xzWwkaWbhpIVtve OBdA1oMy3UkC6WyWRSbvUT3XOuNYt9Wo9Oj8dyDhbdC0hpne9pETRemswiyS7plF 0SK/NTSVwKTELhsQZP4RZGGnwUdAFV+8z+oIyqghvRFVI6hmDQyYT7MVbINJt4rR XG0kG150xgJrUINwNyhSOaQZpJg0+YUR0mG9YFwMQzMUlbDX0QRZZ5cMr6CrnWzF cTugZBYcCTGjr7CO3tGUAY/VDM46mW0Si2QiMXjo7QMLM/nq56x/epCzRHpuOD52 x/kohDXNA5Ef3FMSMfH9YDfoY7K7F+/7O7GX7/PKEmtyyO8Rf17hzJqaXcRnBnY= =nYZk -----END PGP SIGNATURE----- _______________________________________________ Tech mailing list Tech@lists.lopsa.org https://lists.lopsa.org/cgi-bin/mailman/listinfo/tech This list provided by the League of Professional System Administrators http://lopsa.org/
