RE: Newbie General Security Question
- From: "AD." <me@xxxxxxxxxxx>
- Date: Thu, 15 Dec 2005 13:10:42 +1300
On Wed, 14 Dec 2005 11:23:14 -0800, Robarb wrote:
> Thanks for the response. I think I'm actually asking a bigger question.
> If I were to do the maximum I can do (like getting rid of the everyone
> group for my data drive), how secure is SBS? Has a hacker over the
> internet ever gotten through an ISA firewall (without the aid of an
> internal virus, etc.) and accessed data on a drive on the server without
> having an authorized password? If the server is healthy and uninfected in
> any way, has the 'permission' system proven to be completely secure?
The 'security' of your server from the outside depends on how many
services you publish to the internet.
To be really (but never totally) secure:
Ditch the idea of running a website on SBS - put it elsewhere.
Incoming SMTP could be handled by queueing it at your ISP and getting it
via ETRN.
Disable internet access to OWA, RWW, VPN etc.
That way if you have no ports open, they can't be exploited.
But that still leaves ways of being compromised from users inside the LAN
- eg malware, browser exploits etc etc.
Nothing is ever 100% secure - server admins make value judgement of how
the value of a service compares to the risk of providing it. Everything is
a tradeoff - most places would be happy leaving certain services open to
the internet provided they were properly configured and maintained.
--
Cheers
Anton
.
- References:
- Newbie General Security Question
- From: Robarb
- Newbie General Security Question
- Prev by Date: Re: ISA 2004 - Redirect HTTP Requests to different web page
- Next by Date: RE: Outbound SMTP smarthost message failing
- Previous by thread: Re: Newbie General Security Question
- Next by thread: NAS and SBS backup
- Index(es):
Relevant Pages
|
