Re: [gentoo-user] {OT} Allow work from home?

On Sun, 6 Mar 2016 12:05:17 -0800, Daniel Frey wrote: > >> Ah, I wasn't aware. I am using it with KDE and haven't seen any > >> issues. > > > > It works with KDE4 but not KDE5, so if you're on stable you'll be OK, > > for now. > > > > http://wiki.x2go.org/doku.php/doc:de-compat > > > > >

Re: [gentoo-user] {OT} Allow work from home?

On 03/06/2016 09:36 AM, Neil Bothwick wrote: > On Sun, 6 Mar 2016 08:43:09 -0800, Daniel Frey wrote: > >>> I'm using it with the latest testing xorg-server and it works fine. >>> There are some DEs it has problems with, which are well documented, >>> but not the X server. > >> Ah, I wasn't

Re: [gentoo-user] {OT} Allow work from home?

On Sun, 6 Mar 2016 08:43:09 -0800, Daniel Frey wrote: > > I'm using it with the latest testing xorg-server and it works fine. > > There are some DEs it has problems with, which are well documented, > > but not the X server. > Ah, I wasn't aware. I am using it with KDE and haven't seen any

Re: [gentoo-user] {OT} Allow work from home?

On 03/05/2016 01:22 AM, Neil Bothwick wrote: > On Sat, 05 Mar 2016 00:55:17 +0100, lee wrote: > >>> I'm using the most recent stable and it works for me: >>> >>> $ equery list xorg-server >>> * Searching for xorg-server ... >>> [IP-] [ ] x11-base/xorg-server-1.17.4:0/1.17.4 >> >> Maybe the

Re: [gentoo-user] {OT} Allow work from home?

On Sat, 05 Mar 2016 00:55:17 +0100, lee wrote: > >>> Still using x2go, still works wonderfully. > >> > >> IIRC, I wanted to try it, and it turned out to be incompatible with > >> current X servers --- perhaps they fixed that in the meantime ... > >> > > > > What version are you using? >

Re: [gentoo-user] {OT} Allow work from home?

Daniel Frey writes: > On 02/21/2016 04:36 PM, lee wrote: >> Daniel Frey writes: >> >>> On 02/20/2016 02:27 AM, lee wrote: Daniel Frey writes: > I looked up x2go and rebuilt openssh on my home server as it suggested > to try

Re: [gentoo-user] {OT} Allow work from home?

On 02/21/2016 04:36 PM, lee wrote: > Daniel Frey writes: > >> On 02/20/2016 02:27 AM, lee wrote: >>> Daniel Frey writes: I looked up x2go and rebuilt openssh on my home server as it suggested to try it out. >> >> I should mention I undid the hpn

Re: [gentoo-user] {OT} Allow work from home?

Daniel Frey writes: > On 02/20/2016 02:27 AM, lee wrote: >> Daniel Frey writes: >>> I looked up x2go and rebuilt openssh on my home server as it suggested >>> to try it out. > > I should mention I undid the hpn USE-flag change (x2go suggested > building

Re: [gentoo-user] {OT} Allow work from home?

On 02/20/2016 02:27 AM, lee wrote: > Daniel Frey writes: >> I looked up x2go and rebuilt openssh on my home server as it suggested >> to try it out. I should mention I undid the hpn USE-flag change (x2go suggested building without it) and it works fine, the newer versions

Re: [gentoo-user] {OT} Allow work from home?

On Sat, Feb 20, 2016 at 5:55 AM, lee wrote: > Rich Freeman writes: > >> develop. (Before somebody points out LUKS, be aware that Bitlocker >> lets you do full-disk encyption that is secure without having to >> actually type a decryption key at any point.

Re: [gentoo-user] {OT} Allow work from home?

Rich Freeman writes: > develop. (Before somebody points out LUKS, be aware that Bitlocker > lets you do full-disk encyption that is secure without having to > actually type a decryption key at any point. Remove the hard drive or > boot from a CD, and the disks are unreadable

Re: [gentoo-user] {OT} Allow work from home?

Rich Freeman writes: > On Mon, Jan 18, 2016 at 7:57 PM, lee wrote: >> Rich Freeman writes: >>> On Sun, Jan 17, 2016 at 7:26 PM, lee wrote: Rich Freeman writes: > However, while an RDP-like

Re: [gentoo-user] {OT} Allow work from home?

Daniel Frey writes: > On 01/17/2016 10:10 AM, Rich Freeman wrote: >> On Sun, Jan 17, 2016 at 1:03 PM, J. Roeleveld wrote: >>> >>> I would prefer a method that is independent of OS used. And provides server >>> side limitations with regards to filesharing

Re: [gentoo-user] {OT} Allow work from home?

>> >> > However, this won't do away with XSS, or other similar attack vectors >> >> > if >> >> > the users are not careful with their browsing habits. >> >> >> >> Can you give me an example? >> > >> > If your coder has another website page open in his/her browser which >> > contains for example

Re: [gentoo-user] {OT} Allow work from home?

On Sun, Jan 24, 2016 at 10:56 AM, Grant wrote: > > So the user is safe if I send all internet requests from her remote > laptop through the Zerotier connection (instead of only sending > requests to my server through Zerotier)? > It depends on what you mean by "safe." If

Re: [gentoo-user] {OT} Allow work from home?

On Sun, Jan 24, 2016 at 1:36 PM, Mick wrote: > On Sunday 24 Jan 2016 11:40:04 Rich Freeman wrote: >> On Sun, Jan 24, 2016 at 10:56 AM, Grant wrote: >> > So the user is safe if I send all internet requests from her remote >> > laptop through the

Re: [gentoo-user] {OT} Allow work from home?

On Sunday 24 Jan 2016 13:44:12 Rich Freeman wrote: > On Sun, Jan 24, 2016 at 1:36 PM, Mick wrote: > > On Sunday 24 Jan 2016 11:40:04 Rich Freeman wrote: > >> On Sun, Jan 24, 2016 at 10:56 AM, Grant wrote: > >> > So the user is safe if I send all

Re: [gentoo-user] {OT} Allow work from home?

On Sunday 24 Jan 2016 11:40:04 Rich Freeman wrote: > On Sun, Jan 24, 2016 at 10:56 AM, Grant wrote: > > So the user is safe if I send all internet requests from her remote > > laptop through the Zerotier connection (instead of only sending > > requests to my server through

Re: [gentoo-user] {OT} Allow work from home?

On Tuesday 19 Jan 2016 15:59:25 Grant wrote: > >> > I'm sorry, I meant can I lock down access to my web stuff so that a > >> > particular user can only come from a particular device (or from any > >> > device containing a key). > > > > You can use apache client authentication with SSL

Re: [gentoo-user] {OT} Allow work from home?

On Sat, Jan 23, 2016 at 8:25 AM, Mick wrote: > On Tuesday 19 Jan 2016 15:59:25 Grant wrote: > >> > If a user certificate is lost of feared compromised, you revoke it with >> > your CA and upload the CRL to the server. >> > >> > However, this won't do away with XSS, or

Re: [gentoo-user] {OT} Allow work from home?

On Thursday, January 21, 2016 11:17:05 PM lee wrote: > "J. Roeleveld" writes: > > On Tuesday, January 19, 2016 11:22:02 PM lee wrote: > >> "J. Roeleveld" writes: > >> > [...] > >> > If disk-space is considered too expensive, you could even have every VM >

Re: [gentoo-user] {OT} Allow work from home?

On Saturday 23 Jan 2016 09:55:35 Rich Freeman wrote: > On Sat, Jan 23, 2016 at 8:25 AM, Mick wrote: > > On Tuesday 19 Jan 2016 15:59:25 Grant wrote: > >> > If a user certificate is lost of feared compromised, you revoke it with > >> > your CA and upload the CRL to the

Re: [gentoo-user] {OT} Allow work from home?

On Sat, Jan 23, 2016 at 12:17 PM, Mick wrote: > I would have thought SSL certificates/keys would be protected in RAM, but if > you have a Man-In-The-Browser attack I guess they wouldn't be. > As far as I'm aware linux doesn't do anything to protect process RAM from

Re: [gentoo-user] {OT} Allow work from home?

"J. Roeleveld" writes: > On Tuesday, January 19, 2016 11:22:02 PM lee wrote: >> "J. Roeleveld" writes: >> > [...] >> > If disk-space is considered too expensive, you could even have every VM >> > use >> > the same base image. And have them store only the

Re: [gentoo-user] {OT} Allow work from home?

"J. Roeleveld" writes: > On Wednesday, January 20, 2016 01:46:29 AM lee wrote: >> "J. Roeleveld" writes: >> > On Tuesday, January 19, 2016 01:46:45 AM lee wrote: >> >> "J. Roeleveld" writes: >> >> > On Monday, January 18, 2016

Re: [gentoo-user] {OT} Allow work from home?

Rich Freeman writes: > On Tue, Jan 19, 2016 at 5:08 PM, lee wrote: >> >> BTW, is it as easy to give a graphics card to a container as it is to >> give it a network card? > > I've never tried it, but I'd think that the container could talk to a > graphics

Re: [gentoo-user] {OT} Allow work from home?

Rich Freeman writes: > On Tue, Jan 19, 2016 at 5:22 PM, lee wrote: >> "J. Roeleveld" writes: >> >> How does that work? IIUC, when you created a snapshot, any changes you >> make to the snapshotted (or how that is called) file system are

Re: [gentoo-user] {OT} Allow work from home?

Alec Ten Harmsel writes: > On Tue, Jan 19, 2016 at 10:56:21PM +0100, lee wrote: >> Alec Ten Harmsel writes: >> > >> > Depends on how the load is. Right now I have a 500GB HDD at work. I use >> > VirtualBox and vagrant for testing various

Re: [gentoo-user] {OT} Allow work from home?

On Thu, Jan 21, 2016 at 4:35 PM, lee wrote: > And I thought vnc sends a copy of what is displayed on the screen, so if > you were running a program that renders something on the screen and > uses/requires a graphics card for that, you should be able to see what > it renders. If

Re: [gentoo-user] {OT} Allow work from home?

On Thu, Jan 21, 2016 at 5:00 PM, lee wrote: > Hm, I must be misunderstanding snapshots entirely. > Well, in the case of zfs/btrfs you are. Different implementations have different snapshotting features. > What happens when you remove a snapshot after you modified the >

Re: [gentoo-user] {OT} Allow work from home?

lee wrote: > Rich Freeman writes: > > > On Tue, Jan 19, 2016 at 5:22 PM, lee wrote: > >> "J. Roeleveld" writes: > >> > >> How does that work? IIUC, when you created a snapshot, any changes you > >> make to the

Re: [gentoo-user] {OT} Allow work from home?

On Wed, 20 Jan 2016 16:21:42 -0800, Grant wrote: > I would > need to be able to rsync to the laptop and I'd rather not be involved > in the remote employee's router config. Is there an easier solution > for that than OpenVPN? There is ZeroTier as a replacement for OpenVPN, and Syncthing for

Re: [gentoo-user] {OT} Allow work from home?

On 01/17/2016 10:10 AM, Rich Freeman wrote: > On Sun, Jan 17, 2016 at 1:03 PM, J. Roeleveld wrote: >> >> I would prefer a method that is independent of OS used. And provides server >> side limitations with regards to filesharing and clipboard access. >> > > x2go is just X11,

Re: [gentoo-user] {OT} Allow work from home?

On Wed, Jan 20, 2016 at 7:21 PM, Grant wrote: > Despite Rich's best efforts (thank you Rich! :-) ) I'm still > considering a Gentoo laptop for this along with a Chromebook. No worries. Gentoo laptops are great. There's a reason that Google decided to use them as the

Re: [gentoo-user] {OT} Allow work from home?

>>> > I'm sorry, I meant can I lock down access to my web stuff so that a >>> > particular user can only come from a particular device (or from any >>> > device containing a key). >>> >> You can use apache client authentication with SSL certificates only. Of >> course you will need to create a

Re: [gentoo-user] {OT} Allow work from home?

On Tue, Jan 19, 2016 at 12:22 AM, wrote: > > I'm an absolute windows noop. I only use it for graphics work. I even > didn't know that such a kind of file sharing is possible with it. :-) > No worries - I think that is a great place to be. However, it is useful to understand

Re: [gentoo-user] {OT} Allow work from home?

On Tue, Jan 19, 2016 at 2:32 PM, Grant wrote: > > I'm sorry, I meant can I lock down access to my web stuff so that a > particular user can only come from a particular device (or from any > device containing a key). > It looks like this hasn't been widely implemented, but

Re: [gentoo-user] {OT} Allow work from home?

>> If that's the case then it sounds like 2FA doesn't really provide any >> extra assurance. It's another layer but if the machine is hacked then >> it sounds like it becomes a very thin layer. >> >> I'd most like to allow the remote employee to use their own computer, >> but is there any way to

Re: [gentoo-user] {OT} Allow work from home?

On Tue, Jan 19, 2016 at 9:02 AM, Grant wrote: > > If that's the case then it sounds like 2FA doesn't really provide any > extra assurance. It's another layer but if the machine is hacked then > it sounds like it becomes a very thin layer. > > I'd most like to allow the

Re: [gentoo-user] {OT} Allow work from home?

On Tuesday 19 Jan 2016 08:42:07 J. Roeleveld wrote: > On Tuesday, January 19, 2016 01:57:38 AM lee wrote: > > Rich Freeman writes: > > > On Sun, Jan 17, 2016 at 7:26 PM, lee wrote: > > >> Rich Freeman writes: > > >>> However, while an

Re: [gentoo-user] {OT} Allow work from home?

>> You can use apache client authentication with SSL certificates only. Of >> course you will need to create a self-signed CA, which you will use to create >> the web server public/private key pair and also sign each client's >> certificate >> and upload it along with your CA certificate to the

Re: [gentoo-user] {OT} Allow work from home?

"J. Roeleveld" writes: > On Tuesday, January 19, 2016 01:46:45 AM lee wrote: >> "J. Roeleveld" writes: >> > On Monday, January 18, 2016 02:02:27 AM lee wrote: >> >> "J. Roeleveld" writes: >> >> > On 17 January 2016 18:35:20 CET, Mick

Re: [gentoo-user] {OT} Allow work from home?

Rich Freeman writes: > On Mon, Jan 18, 2016 at 9:45 PM, Alec Ten Harmsel > wrote: >> >> All Joost is saying is that most resources can be overcommitted, since >> all the users will not be using all their resources at the same time. >> > > Don't want to

Re: [gentoo-user] {OT} Allow work from home?

Alec Ten Harmsel writes: > On Tue, Jan 19, 2016 at 01:46:45AM +0100, lee wrote: >> "J. Roeleveld" writes: >> >> > On Monday, January 18, 2016 02:02:27 AM lee wrote: >> >> "J. Roeleveld" writes: >> >> > On 17 January 2016

Re: [gentoo-user] {OT} Allow work from home?

"J. Roeleveld" writes: > [...] > If disk-space is considered too expensive, you could even have every VM use > the same base image. And have them store only the differences of the disk. > eg: > 1) Create a VM > 2) Snapshot the disk (with the VM shutdown) > 3) create a new

Re: [gentoo-user] {OT} Allow work from home?

On Tue, Jan 19, 2016 at 6:26 PM, Mick wrote: > > You can use apache client authentication with SSL certificates only. Of > course you will need to create a self-signed CA, which you will use to create > the web server public/private key pair and also sign each client's

Re: [gentoo-user] {OT} Allow work from home?

On Tue, Jan 19, 2016 at 5:22 PM, lee wrote: > "J. Roeleveld" writes: > > How does that work? IIUC, when you created a snapshot, any changes you > make to the snapshotted (or how that is called) file system are being > referenced by the snapshot which you

Re: [gentoo-user] {OT} Allow work from home?

On Tuesday 19 Jan 2016 17:46:27 Rich Freeman wrote: > On Tue, Jan 19, 2016 at 2:32 PM, Grant wrote: > > I'm sorry, I meant can I lock down access to my web stuff so that a > > particular user can only come from a particular device (or from any > > device containing a key). >

Re: [gentoo-user] {OT} Allow work from home?

>> > I'm sorry, I meant can I lock down access to my web stuff so that a >> > particular user can only come from a particular device (or from any >> > device containing a key). >> > You can use apache client authentication with SSL certificates only. Of > course you will need to create a

Re: [gentoo-user] {OT} Allow work from home?

On Tue, Jan 19, 2016 at 10:56:21PM +0100, lee wrote: > Alec Ten Harmsel writes: > > > > Depends on how the load is. Right now I have a 500GB HDD at work. I use > > VirtualBox and vagrant for testing various software. Every VM in > > VirtualBox gets a 50GB hard disk, and I

Re: [gentoo-user] {OT} Allow work from home?

On Tue, Jan 19, 2016 at 5:08 PM, lee wrote: > > BTW, is it as easy to give a graphics card to a container as it is to > give it a network card? I've never tried it, but I'd think that the container could talk to a graphics card. > What if you have a container for each user who

Re: [gentoo-user] {OT} Allow work from home?

On Tue, Jan 19, 2016 at 7:18 PM, Grant wrote: > > Is an SSL key stored on a smartcard better than a TOTP password? They > seem roughly equivalent to me. I don't think either would restrict > access by device. > They'd be roughly equivalent, especially if the TOTP is

Re: [gentoo-user] {OT} Allow work from home?

On Tuesday, January 19, 2016 11:22:02 PM lee wrote: > "J. Roeleveld" writes: > > [...] > > If disk-space is considered too expensive, you could even have every VM > > use > > the same base image. And have them store only the differences of the disk. > > eg: > > 1) Create a VM

Re: [gentoo-user] {OT} Allow work from home?

On Wednesday, January 20, 2016 01:46:29 AM lee wrote: > "J. Roeleveld" writes: > > On Tuesday, January 19, 2016 01:46:45 AM lee wrote: > >> "J. Roeleveld" writes: > >> > On Monday, January 18, 2016 02:02:27 AM lee wrote: > >> >> "J. Roeleveld"

Re: [gentoo-user] {OT} Allow work from home?

> In any case, if you aren't going to own the client hardware, you > basically are going to have to assume it is vulnerable since nobody > maintains their PCs well. That means keyboard sniffing, cookie > stealing, and so on. If you're web-based a hostile browser could just > open another session

Re: [gentoo-user] {OT} Allow work from home?

On Mon, Jan 18, 2016 at 12:06 PM, Grant wrote: > > I am 100% web-based. I don't want to administrate machines outside of > my LAN so I can imagine a Chromebook would end up vulnerable > eventually. The whole point of chromebooks is that they auto-update in a timely

Re: [gentoo-user] {OT} Allow work from home?

On Mon, Jan 18, 2016 at 1:44 AM, J. Roeleveld wrote: > On Monday, January 18, 2016 02:02:27 AM lee wrote: >> >> You would have a full VM for each user? > > Yes > >> That would be a huge waste of resources, > > Diskspace and CPU can easily be overcommitted. >... > The biggest

Re: [gentoo-user] {OT} Allow work from home?

On Monday, January 18, 2016 06:07:33 AM Rich Freeman wrote: > On Mon, Jan 18, 2016 at 1:44 AM, J. Roeleveld wrote: > > On Monday, January 18, 2016 02:02:27 AM lee wrote: > >> You would have a full VM for each user? > > > > Yes > > > >> That would be a huge waste of

Re: [gentoo-user] {OT} Allow work from home?

>> Suppose you use a VPN connection. How do does the client (employee) >> secure their own network and the machine they're using to work remotely >> then? > > Poorly, most likely. Your data is probably not nearly as important to > them as their data is, and most people don't take great care of

Re: [gentoo-user] {OT} Allow work from home?

"J. Roeleveld" writes: > On Monday, January 18, 2016 02:02:27 AM lee wrote: >> "J. Roeleveld" writes: >> > On 17 January 2016 18:35:20 CET, Mick wrote: >> > >> > [...] >> > >> >>I use the icaclient provided by Citrix to

Re: [gentoo-user] {OT} Allow work from home?

writes: > lee wrote: > >> Rich Freeman writes: >> >> > On Sun, Jan 17, 2016 at 6:38 AM, lee wrote: >> >> Suppose you use a VPN connection. How do does the client >> >> (employee) secure their own network and the

Re: [gentoo-user] {OT} Allow work from home?

Rich Freeman writes: > On Sun, Jan 17, 2016 at 7:26 PM, lee wrote: >> Rich Freeman writes: >> >>> However, while an RDP-like solution protects you from some types of >>> attacks, it still leaves you open to many client-side problems like

Re: [gentoo-user] {OT} Allow work from home?

On Mon, Jan 18, 2016 at 7:57 PM, lee wrote: > Rich Freeman writes: >> On Sun, Jan 17, 2016 at 7:26 PM, lee wrote: >>> Rich Freeman writes: >>> However, while an RDP-like solution protects you from some types of

Re: [gentoo-user] {OT} Allow work from home?

On Mon, Jan 18, 2016 at 9:45 PM, Alec Ten Harmsel wrote: > > All Joost is saying is that most resources can be overcommitted, since > all the users will not be using all their resources at the same time. > Don't want to sound like a broken record, but this is precisely

Re: [gentoo-user] {OT} Allow work from home?

On Mon, Jan 18, 2016 at 10:33 PM, wrote: > > Sharing files can be done via SCP/SFTP. If a VPN connection is used, > then even NFS or FTP are possibilities. I have 100 computers. I want a user on those 100 computers to be able to share a file on their computer with just me.

Re: [gentoo-user] {OT} Allow work from home?

Rich Freeman wrote: > On Mon, Jan 18, 2016 at 10:33 PM, wrote: > > > > Sharing files can be done via SCP/SFTP. If a VPN connection is used, > > then even NFS or FTP are possibilities. > > I have 100 computers. I want a user on those 100 computers to be

Re: [gentoo-user] {OT} Allow work from home?

Rich Freeman wrote: > I do sometimes wonder how the #1 server OS in the world somehow lacks > decent facilities for graphical remote login, and for sharing files > across the network. (For the latter NFS is a real pain to set up in a > remotely secure fashion - part of the

Re: [gentoo-user] {OT} Allow work from home?

On Tue, Jan 19, 2016 at 01:46:45AM +0100, lee wrote: > "J. Roeleveld" writes: > > > On Monday, January 18, 2016 02:02:27 AM lee wrote: > >> "J. Roeleveld" writes: > >> > On 17 January 2016 18:35:20 CET, Mick wrote: > >> > > >>

Re: [gentoo-user] {OT} Allow work from home?

lee wrote: > writes: > > > lee wrote: > > > >> Rich Freeman writes: > >> > >> > On Sun, Jan 17, 2016 at 6:38 AM, lee wrote: > >> >> Suppose you use a VPN connection. How do does the client > >> >>

Re: [gentoo-user] {OT} Allow work from home?

On Monday, January 18, 2016 09:45:28 PM Alec Ten Harmsel wrote: > On Tue, Jan 19, 2016 at 01:46:45AM +0100, lee wrote: > > "J. Roeleveld" writes: > > > On Monday, January 18, 2016 02:02:27 AM lee wrote: > > >> "J. Roeleveld" writes: > > >> > On 17 January

Re: [gentoo-user] {OT} Allow work from home?

On Tuesday, January 19, 2016 01:46:45 AM lee wrote: > "J. Roeleveld" writes: > > On Monday, January 18, 2016 02:02:27 AM lee wrote: > >> "J. Roeleveld" writes: > >> > On 17 January 2016 18:35:20 CET, Mick > >> > wrote: > >> > >

Re: [gentoo-user] {OT} Allow work from home?

On Monday, January 18, 2016 08:35:20 PM Rich Freeman wrote: > On Mon, Jan 18, 2016 at 7:57 PM, lee wrote: > > Rich Freeman writes: > >> On Sun, Jan 17, 2016 at 7:26 PM, lee wrote: > >>> Rich Freeman writes: > However,

Re: [gentoo-user] {OT} Allow work from home?

On Tuesday, January 19, 2016 01:57:38 AM lee wrote: > Rich Freeman writes: > > On Sun, Jan 17, 2016 at 7:26 PM, lee wrote: > >> Rich Freeman writes: > >>> However, while an RDP-like solution protects you from some types of > >>> attacks, it

Re: [gentoo-user] {OT} Allow work from home?

On Tuesday, January 19, 2016 02:15:17 AM lee wrote: > writes: > > lee wrote: > >> Rich Freeman writes: > >> > On Sun, Jan 17, 2016 at 6:38 AM, lee wrote: > >> >> Suppose you use a VPN connection. How do does the client

Re: [gentoo-user] {OT} Allow work from home?

On Monday, January 18, 2016 02:02:27 AM lee wrote: > "J. Roeleveld" writes: > > On 17 January 2016 18:35:20 CET, Mick wrote: > > > > [...] > > > >>I use the icaclient provided by Citrix to access my virtual desktop at > >>work, > >>but have never

Re: [gentoo-user] {OT} Allow work from home?

On Sun, Jan 17, 2016 at 12:35 PM, Mick wrote: > I use the icaclient provided by Citrix to access my virtual desktop at work, > but have never tried to set up something similar at home. What opensource > software would I need for this? Is there a wiki somewhere to

Re: [gentoo-user] {OT} Allow work from home?

On Sunday 17 Jan 2016 13:10:42 Rich Freeman wrote: > On Sun, Jan 17, 2016 at 1:03 PM, J. Roeleveld wrote: > > I would prefer a method that is independent of OS used. And provides > > server side limitations with regards to filesharing and clipboard access. > x2go is just X11,

Re: [gentoo-user] {OT} Allow work from home?

On 17 January 2016 18:35:20 CET, Mick wrote: >On Sunday 17 Jan 2016 16:51:00 J. Roeleveld wrote: >> On Sunday, January 17, 2016 10:46:38 AM Rich Freeman wrote: >> > On Sun, Jan 17, 2016 at 10:27 AM, J. Roeleveld >wrote: >> > > Actually, there are

Re: [gentoo-user] {OT} Allow work from home?

On Sun, Jan 17, 2016 at 1:03 PM, J. Roeleveld wrote: > > I would prefer a method that is independent of OS used. And provides server > side limitations with regards to filesharing and clipboard access. > x2go is just X11, so it should be OS-independent as long as you have a

Re: [gentoo-user] {OT} Allow work from home?

On 17 January 2016 18:59:36 CET, Rich Freeman wrote: >On Sun, Jan 17, 2016 at 12:35 PM, Mick >wrote: >> I use the icaclient provided by Citrix to access my virtual desktop >at work, >> but have never tried to set up something similar at home. What

Re: [gentoo-user] {OT} Allow work from home?

"J. Roeleveld" writes: > On 17 January 2016 18:35:20 CET, Mick wrote: > [...] >>I use the icaclient provided by Citrix to access my virtual desktop at >>work, >>but have never tried to set up something similar at home. What >>opensource

Re: [gentoo-user] {OT} Allow work from home?

lee wrote: > Rich Freeman writes: > > > On Sun, Jan 17, 2016 at 6:38 AM, lee wrote: > >> Suppose you use a VPN connection. How do does the client > >> (employee) secure their own network and the machine they're using > >> to work remotely

Re: [gentoo-user] {OT} Allow work from home?

Rich Freeman writes: > On Sun, Jan 17, 2016 at 6:38 AM, lee wrote: >> Suppose you use a VPN connection. How do does the client (employee) >> secure their own network and the machine they're using to work remotely >> then? > > Poorly, most likely. Your data

Re: [gentoo-user] {OT} Allow work from home?

On Sun, Jan 17, 2016 at 7:26 PM, lee wrote: > Rich Freeman writes: > >> However, while an RDP-like solution protects you from some types of >> attacks, it still leaves you open to many client-side problems like >> keylogging. I don't know any major

Re: [gentoo-user] {OT} Allow work from home?

On Sun, Jan 17, 2016 at 6:38 AM, lee wrote: > Suppose you use a VPN connection. How do does the client (employee) > secure their own network and the machine they're using to work remotely > then? Poorly, most likely. Your data is probably not nearly as important to them as

Re: [gentoo-user] {OT} Allow work from home?

Mick writes: > On Saturday 16 Jan 2016 09:39:24 Alan McKinnon wrote: >> On 16/01/2016 06:17, Grant wrote: >> > I'm considering allowing some employees to work from home but I'm >> > concerned about the security implications. Currently everybody shows up >> > and logs

Re: [gentoo-user] {OT} Allow work from home?

On Sunday, January 17, 2016 07:27:45 AM Rich Freeman wrote: > On Sun, Jan 17, 2016 at 6:38 AM, lee wrote: > > Suppose you use a VPN connection. How do does the client (employee) > > secure their own network and the machine they're using to work remotely > > then? > > Poorly,

Re: [gentoo-user] {OT} Allow work from home?

On Sunday, January 17, 2016 10:46:38 AM Rich Freeman wrote: > On Sun, Jan 17, 2016 at 10:27 AM, J. Roeleveld wrote: > > Actually, there are several large corporations that use RDP-like > > technologies. Although those are called "VDI" and usually use XenDesktop > > on the

Re: [gentoo-user] {OT} Allow work from home?

On Sun, Jan 17, 2016 at 10:27 AM, J. Roeleveld wrote: > > Actually, there are several large corporations that use RDP-like technologies. > Although those are called "VDI" and usually use XenDesktop on the server side > and "icaclient" on the client. > Runs through HTTPS and

Re: [gentoo-user] {OT} Allow work from home?

On Sunday 17 Jan 2016 16:51:00 J. Roeleveld wrote: > On Sunday, January 17, 2016 10:46:38 AM Rich Freeman wrote: > > On Sun, Jan 17, 2016 at 10:27 AM, J. Roeleveld wrote: > > > Actually, there are several large corporations that use RDP-like > > > technologies. Although those

Re: [gentoo-user] {OT} Allow work from home?

On Sat, Jan 16, 2016 at 2:39 AM, Alan McKinnon wrote: > > As for the security levels of their personal machines, tell them what > you require and from that point on you really have to trust your people > so be security aware and with the program. > Most employers just

Re: [gentoo-user] {OT} Allow work from home?

On Saturday 16 Jan 2016 09:39:24 Alan McKinnon wrote: > On 16/01/2016 06:17, Grant wrote: > > I'm considering allowing some employees to work from home but I'm > > concerned about the security implications. Currently everybody shows up > > and logs into their locked down Gentoo system and from

Re: [gentoo-user] {OT} Allow work from home?

Grant wrote: > I'm considering allowing some employees to work from home but I'm > concerned about the security implications. Currently everybody shows > up and logs into their locked down Gentoo system and from there is > able to access the company webapps which are

Re: [gentoo-user] {OT} Allow work from home?

On 01/15/2016 09:18 PM, waben...@gmail.com wrote: > Grant wrote: > >> I'm considering allowing some employees to work from home but I'm >> concerned about the security implications. Currently everybody shows >> up and logs into their locked down Gentoo system and from

Re: [gentoo-user] {OT} Allow work from home?

On 16/01/2016 06:17, Grant wrote: > I'm considering allowing some employees to work from home but I'm > concerned about the security implications. Currently everybody shows up > and logs into their locked down Gentoo system and from there is able to > access the company webapps which are