This feels as though it is heading for a religious debate, but for what it =
is worth...

I work as an architect for a company that runs part of the Internet infrast=
ructure
so I have to deal with this sort of thing frequently.

Running a dedicated server does NOT prevent physical access to the machine
unless you are prepared to pay very high fees for unusual physical access c=
ontrols.
Even dedicated cages (expensive) are typically placed in a colo facility in=
 a way that
does not prevent unauthorized access.

I would argue that guest VMs on a properly managed system have better contr=
ols
than many dedicated servers largely because access can be tracked and contr=
olled.

With either option you should use disk encryption and secured VPNs.

On Jun 26, 2012, at 7:22 PM, smplx wrote:

>=20
>=20
> On Tue, 26 Jun 2012, V G wrote:
>=20
>> On Tue, Jun 26, 2012 at 2:56 PM, Sergey Dryga <sergey@dryga.us> wrote:
>>=20
>>> There are plenty of dedicated hosting options.
>>>=20
>>=20
>> No matter what option I choose, SOMEONE will have access to servers and
>> it's not in my control.
>=20
> Yes but not all server solutions are the same. If you run a dedicated=20
> server you can didcate how the physical machine is setup, what software i=
s=20
> running on it and how that software is configured, If you are looking at =
a=20
> shared (run of the mill standard cheap service) you will be greatly=20
> restricted to doing things the way the service provider wants to do it. H=
e=20
> is not going to want you to be able to lock him out of his machine, he is=
=20
> going to want some way of ensuring you use the machine in a legal way=20
> which is not going to come back on him. Someone having access to a server=
=20
> does not mean he can easily compromise your data. It's like have a car in=
=20
> your drive. Anyone passing by might be able to look at it and touch it bu=
t=20
> if your install the proper alarm system and disabling unit he wont be abl=
e=20
> to use it.
>=20
> In conclusion a dedicated server can be locked down and made infiniately=
=20
> more secure than a shared server. You need to look at what providers are=
=20
> available and what they offer you. Also some of these providers would=20
> actually give you better physical security than if you housed the server=
=20
> in your own home - think 24/7 security guards with restricted access to=20
> the server rooms.
>=20
> Regards
> Sergio Masci
> --=20
> http://www.piclist.com PIC/SX FAQ & list archive
> View/change your membership options at
> http://mailman.mit.edu/mailman/listinfo/piclist


--=20
http://www.piclist.com PIC/SX FAQ & list archive
View/change your membership options at
http://mailman.mit.edu/mailman/listinfo/piclist
.