by /u/ecliptica · 3rd April, 2023 18:44 in /d/OpSec
0 votes · 8 comments
- /u/ecliptica 📢 4th April, 2023 - 20:17 I catch your drift, but this isnt feasable for me. I can't decrypt my servers manually like that on my scale. I also don't nessecarily see the added security benefits. The providers I use are sketchy, I always assume the provider as ill intent and can access my servers physically. Thanks nonetheless for your feedback, I'll think about it further.
by /u/ecliptica · 3rd April, 2023 18:44 in /d/OpSec
0 votes · 8 comments
- /u/ecliptica 📢 4th April, 2023 - 20:14 Hm, I get it from a security perspective - but privacy wise it would still be a cost right? I construct my servers with a mindset that they will be hacked. Once hacked, I want as little traces as possible (from me or the traffic/data going through the servers). To make up for the lack of logging, I have a stateless setup fundamentally so I just redeploy every x interval automatically. The servers that do have state, will have maximum logging and security. This setup allows me to keep strict security on limited servers with state, whilst using various sketchy hosters with the stateless setup.
by /u/ecliptica · 3rd April, 2023 18:44 in /d/OpSec
0 votes · 8 comments