On Fri, Jun 02, 2017 at 11:34:47PM -0400, Jer wrote: > On 2017-06-02 10:55 PM, Hendrik Boom wrote: > >On Fri, Jun 02, 2017 at 10:16:17PM -0400, Stefan Monnier wrote: > >>>Home server is slowly dying. CMOS battery died, has trouble booting > >>>(though I always manage to get it to boot because I have two > >>>independent ways to do it), USB died, and so forth. > >>> > >>>I am in process of replacing it. > I would suggest things, but if you care so much about security you will > throw out the two reigning platforms you are not left with much choice.
I'm noticing this. A can't say that the security concerns are absolute, but it goes against the grain to set up systems with known, unavoidable vulnerabilities. But it also goes against the grain to spend ridiculous amounts of time or treasure to make the thing invulnerable. I'm really looking for good compromises. I may go for the intel server and later place a separate nonintel firewall in front if it. There appear to be two specific port numbers used to access the management engine, and I would be able to block those. Static web pages will probably reside on that firewall machine, to be checked and restocked now and then from behind the firewall. > I > have a Qnap NAS running ARM (ts-859+) with 8 drive bays with 2TB WD RE4 > drives in each. It may work I guess? Certainly not going to be doing much > except file serving, but they have a decent NFS server. Overkill, I suspect, but it's an interesting system. -- hendrik _______________________________________________ mlug mailing list [email protected] https://listes.koumbit.net/cgi-bin/mailman/listinfo/mlug-listserv.mlug.ca
