Gold Lifetime
- Messages
- 27,186
- Reactions
- 72,298
On an air-gapped system, it's perfectly reasonable to prohibit outside connections or any hardware that's been connected outside. I'll agree with that completely.I also have worked on a isolated system with a dedicated hard wired console. You had to have the correct/current USB to boot it and the pass phrase for the USB, then for the system you needed the correct User ID then the correct PW. There were no prompts, just a black screen. What you typed didn't even appear. That system was a stand alone wired network, separate from the system that contacted the 'dirty world' via VPN only. The servers were in secure rooms and each system was a in cage. There were other security measures too.
About 5 months ago I and others were sent all over the country to secure facilities to manually change the IP addresses and subnets on location. All because for a undisclosed reason (above my pay grade) the old system was scrapped over night. We used our regular laptops to log in local through a browser window though.