[prev in list] [next in list] [prev in thread] [next in thread] 

List:       beowulf
Subject:    Re: [Beowulf] security for small, personal clusters
From:       Ashley Pittman <apittman () concurrent-thinking ! com>
Date:       2008-06-24 10:33:17
Message-ID: 1214303597.6823.11.camel () bruce ! priv ! wark ! uk ! streamline-computing ! com
[Download RAW message or body]


On Fri, 2008-06-20 at 12:30 -0400, Mark Kosmowski wrote:
> What kind of security is recommended for the owner of a small personal
> cluster?

Most likely perimeter security.  I very much doubt there is information
on the compute nodes which isn't on the head node and the compute nodes
won't have any internet connection/bandwidth the frontend doesn't also
have so they won't work as jumping-off points.  If the front-end is
compromised there is little or nothing to be gained from compromising
the compute nodes so it's not worth the hassle or inconvenience to
protect them.  The one exception to this is passwords, don't use any
service on the system which use plain-text passwords as these can be
sniffed and people often use the same password for many accounts.

> Where should the owner of a small, personal cluster go to
> learn about security?  Doing searches tends to give a few "head in the
> sand" sites but predominantly seem to be oriented for the security
> professional.

It's no different than securing a standard Desktop machine or your
laptop.  Disable as many services on the external interface as you can.

Ashley Pittman.

_______________________________________________
Beowulf mailing list, Beowulf@beowulf.org
To change your subscription (digest mode or unsubscribe) visit \
http://www.beowulf.org/mailman/listinfo/beowulf


[prev in list] [next in list] [prev in thread] [next in thread]