Linode Forum
Linode Community Forums
 FAQFAQ    SearchSearch    MembersMembers      Register Register 
 LoginLogin [ Anonymous ] 
Post new topic  Reply to topic
Author Message
PostPosted: Sun Jun 18, 2017 10:11 am 
Offline
Senior Member
User avatar

Joined: Sun Jan 24, 2016 4:30 am
Posts: 226
How can Linode protect itself from malicious ex-employees?

The recent attack on Verelox, a Netherlands based hosting provider, has raised several questions about security and disgruntled malicious ex-employees. In the Verelox case, an ex-admin added backdoors on critical servers and caused data loss (some say to just about the entire company, but did not affect backups). Verelox has since started to bring back many of the customers servers.

I understand that the VPS offerings are not secure, any admin can read/write files on any container VPS via the hardware node, in addition to any data centre admins with physical access. Plus, almost all data centres and hosting providers do some kind of monitoring for xyz government agencies, so that adds another admin person on top of the others, who also has wide-spread access our data.

In another hosting provider, I asked for customer support to fix something as part of their "managed" services, so a random guy from Pakistan accessed the server and messed it up (I monitored the situation remotely, so I could see how clueless he was). I mention this as an example, because legally going after someone across the globe could be nearly impossible, thus some people find it easy to hide after doing something bad. The hosting provider of course denied wrong doing and said that "Bob" was an experienced admin.... (LoL).

IT-related companies that I deal with, have various levels of security, thus one person can do widespread damage, in many cases admins are limited to a certain number of services/clients. I am hoping that Linode will have similar security policies.

Food for thought.

_________________
:idea: I love my computer... all my friends live there.


Top
   
PostPosted: Thu Jun 22, 2017 1:59 am 
Offline
Senior Newbie

Joined: Thu Jun 22, 2017 1:35 am
Posts: 18
I can't imagine what kind of person would ever leave Linode disgruntled :mrgreen:


Top
   
PostPosted: Fri Aug 11, 2017 7:01 pm 
Offline

Joined: Fri Aug 11, 2017 6:43 pm
Posts: 1
If intentional widespread sabotage can be proven and determined to be a felony crime, and it happens to affect someone's critical system somewhere that leads to the death of a federal employee (could happen), there could be a case for capital punishment.

The deterrent is pretty heavy. Food for thought.

IANAL


Top
   
Display posts from previous:  Sort by  
Post new topic  Reply to topic


Who is online

Users browsing this forum: No registered users and 7 guests


You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum

Search for:
Jump to:  
cron
RSS

Powered by phpBB® Forum Software © phpBB Group