Kai Krakow <hurikha...@gmail.com> writes: > Am Sun, 14 May 2017 01:25:24 +0100 > schrieb lee <l...@yagibdah.de>: > >> "Poison BL." <poiso...@gmail.com> writes: >> >> > On Sat, Apr 29, 2017 at 9:11 PM, lee <l...@yagibdah.de> wrote: >> >> >> >> "Poison BL." <poiso...@gmail.com> writes: >> [...] >> > trust >> [...] >> >> >> >> Why not? (12GB are nowhere close to half a petabyte ...) >> > >> > Ah... I completely misread that "or over 50k files in 12GB" as 50k >> > files *at* 12GB each... which works out to 0.6 PB, incidentally. >> > >> >> The data would come in from suppliers. There isn't really anything >> >> going on atm but fetching data once a month which can be like >> >> 100MB or 12GB or more. That's because ppl don't use ftp ... >> > >> > Really, if you're pulling it in from third party suppliers, you >> > tend to be tied to what they offer as a method of pulling it from >> > them (or them pushing it out to you), unless you're in the unique >> > position to dictate the decision for them. >> >> They need to use ftp to deliver the data, we need to use ftp to get >> the data. I don't want that any other way. >> >> The problem is that the ones supposed to deliver data are incompetent >> and don't want to use ftp because it's too complicated. So what's the >> better solution? > > Use an edge router appliance with proper VPN support.
That's what I'm doing, and it doesn't make VPN easy. I guess that lies in the nature of VPN. > You are from Germany? I can recommend Securepoint appliances. You pay > for the hardware and support, they support you with setting everything > up. You can also find a distributor who can install this for > you. Securepoint works with competent partners all around Germany. That would probably cost a lot of money, and external support always involves significant delays. I'll just have to learn it myself. > There's also other alternatives like Watchguard (but their OpenVPN > support is not that good), and a lot of free router/firewall softwares > you can deploy to semi-professional equipment by firmware replacement. > But at least with the latter option, you're mostly on your own and need > to invest a lot of effort to make it work properly and secure. Yes, that would make it much more complicated than it needs to be. > Depending on what data is transferred, you should also take into > account if your solution is certificated to transfer such data. E.g. > medical data may only be transferred through properly certificated VPN > appliances. Otherwise, you should fall back to sneakernet. I'm not sure > how that is any more secure but that's how things are. Interesting, who certifies such appliances? What if I, as a patient, do not want my data transferred that way, and how do I know if they didn't make a mistake when certifying the equipment? It's not medical data, and nobody in Germany actually cares about protecting peoples data anyway. The little that is being done towards that is nothing but pretense. -- "Didn't work" is an error.
