Securing Entropia
A Modern Approach
Neingeist <neingeist@entropia.de>
Senior Consultant, Entropia e.V.
Our demands
Easy user experience
Lean
Clean
Efficient
99,9923% Availability
Secure
The problem
"When you have faults, do not fear to abandon them."
Confucius
Anonymous FTP
Easy passwords and IPv6
The solution
Milestone 1: We put a password on the file server
Milestone 2: We use OpenSSH®
Why password?
The 3 As: AAA
Authorisation: Everyone illuminated is authorised
Authentication: Nobody is authenticated
Accounting: Nobody is accountable
Single sign-on
We use a single password to sign-on
Remember AAA:
Authorisation: Everyone illuminated is authorised
Authentication: Nobody is authenticated
Accounting: Nobody is accountable
Why OpenSSH®
Market leader
Obscenly low licensing costs
Secure
Just Works™
Client support
"It does not matter how slowly you go so long as you do not stop."
Confucius (551 - 479 BC)
Enrollment
We put a password on the file server
We use OpenSSH
...
Profit!
Key benefits of my solution
Lower TCO
Instant ROI
Lower support costs
Key to success: Best user experience
Show-stopper of the other "solution"
Would you trust him with your network?
Our demands are met
Easy user experience
Lean
Clean
Efficient
99,9923% Availability
Secure
Questions?
?
Would you trust him with your network?
Would you trust him with your network?