Inbound Filtering as an ISP Defense Against IoT Attackshttps://danielmiessler.com/blog/inbound-filtering-isp-defense-iot-attacks/ …
-
-
Replying to @SwiftOnSecurity
Challenge: Is there any defensible reason to host universally accessible, durable services on a consumer-grade internet connection in 2016.
36 replies 4 retweets 15 likes -
Replying to @SwiftOnSecurity
Absolutely. It's the only way to have your data accessible from anywhere without making it accessible by anyone.
1 reply 0 retweets 1 like -
Replying to @RichFelker @SwiftOnSecurity
If you don't physically have the server on your own premises, no way to know when it's searched/backdoored/etc.
1 reply 0 retweets 0 likes -
-
Replying to @SwiftOnSecurity
Depends on what it does. Suppose it hosts forums with sensitive topics.
1 reply 0 retweets 0 likes -
Replying to @RichFelker @SwiftOnSecurity
If it's in your physical possession, you can be aware and notify users if it's physically compromised.
1 reply 0 retweets 0 likes -
Replying to @RichFelker @SwiftOnSecurity
If it's at a colo/vps/etc. good luck getting notified when someone shows up to search and backdoor it.
2 replies 0 retweets 0 likes -
Replying to @RichFelker @SwiftOnSecurity
Tho if it's a colo you can use physical case watchdogs/triggers/etc.
1 reply 0 retweets 0 likes
Yeah. Colo is cost-prohibitive for many people though.
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.