Re: Stolen server....?
- From: "Cliff Galiher" <cgaliher@xxxxxxxxx>
- Date: Thu, 12 Jun 2008 02:50:48 -0600
Heh, I too could reminisce, but it probably won't help much... ;) (no offense gumby)
Truthfully, for SBS environments, it is tough (if not impossible) to justify crazy high-tech schemes. Encryption on SBS is also, in most cases prohibitively complex and expensive. So...what do I do?
Whenever possible, I get my customers to buy rackmountable servers. There are also conversion kits for magor brand servers to install in a rack. You don't even have to use a full rack, there are plenty of mini (11U, 15U) racks out there that you can purchase. These can be anchored in a wiring closet, bolt the server in the rack, and have a normal security system on premises. Even if an office is broken into, that'll set off the security alarm, and pulling a server out of a rack (if you secured it in front and back with 8 bolts) will usually take more time than a thief is willing to risk for police response. It is oldschool, but it works.
-Cliff
"SuperGumby [SBS MVP]" <not@xxxxxxxxxxx> wrote in message news:8C6BAA36-6010-4598-8553-7A8D5BBB575E@xxxxxxxxxxxxxxxx
If the attacker has 'physical access' to the box it is no longer 'your box'.
My workstation probably has more grunt, and more info on it, than the Tandem TNS II system I was originally introduced to computers on. Nobody could get out of the elevator on the 'computer room floor' without a pass key and there was another door requiring two factor (key+code) authentication before you got into the 24*7 staffed 'technician room' from which the only 'computer room' access was available. 'computer room staff' were advised not to let anybody they didn't personally know through either mechanism and I passed the test the random day it was set for me (advised the guy 'sorry sir, you are not allowed on this floor').
As servers have become 'commodity items' and people have become accustomed to them such security has been dropped. If anything there is a case to be made for _more_ secure methods to be required to access today's systems.
"Justin Beightol" <captnjb@xxxxxxx> wrote in message news:68E5C45D-D408-4AD5-B401-3780E718405F@xxxxxxxxxxxxxxxxHi all,
Just curious how everyone else approaches this security. A friends office got broken into, they stole a lot of computers, luckily not the ones with data on them. It got me thinking. If someone stole my server, and very unlikely even with bruteforce could they get the password for admin or most other users. Could they easily get to the data? Can you encrypt or is the data encrypted?
Justin
.
- Follow-Ups:
- Re: Stolen server....?
- From: kj [SBS MVP]
- Re: Stolen server....?
- References:
- Stolen server....?
- From: Justin Beightol
- Re: Stolen server....?
- From: SuperGumby [SBS MVP]
- Stolen server....?
- Prev by Date: RE: XP SP3 & SBS 2K Fax Problem
- Next by Date: Re: Server running SQL Server 2005 slower than PC
- Previous by thread: Re: Stolen server....?
- Next by thread: Re: Stolen server....?
- Index(es):
Relevant Pages
|
