Re: Stolen server....?
- From: "kj [SBS MVP]" <KevinJ.SBS@xxxxxxxxxxxxxxxxxx>
- Date: Thu, 12 Jun 2008 08:28:27 -0700
Cliff Galiher wrote:
Heh, I too could reminisce, but it probably won't help much... ;) (no
offense gumby)
Truthfully, for SBS environments, it is tough (if not impossible) to
justify crazy high-tech schemes. Encryption on SBS is also, in most
cases prohibitively complex and expensive. So...what do I do?
Whenever possible, I get my customers to buy rackmountable servers. There
are also conversion kits for magor brand servers to install in
a rack. You don't even have to use a full rack, there are plenty of
mini (11U, 15U) racks out there that you can purchase. These can be
anchored in a wiring closet, bolt the server in the rack, and have a
normal security system on premises. Even if an office is broken
into, that'll set off the security alarm, and pulling a server out of
a rack (if you secured it in front and back with 8 bolts) will
usually take more time than a thief is willing to risk for police
response. It is oldschool, but it works.
-Cliff
Ah, gives new meaning to "hot swap" drives, eh?
<g>
"SuperGumby [SBS MVP]" <not@xxxxxxxxxxx> wrote in message
news:8C6BAA36-6010-4598-8553-7A8D5BBB575E@xxxxxxxxxxxxxxxx
If the attacker has 'physical access' to the box it is no longer
'your box'.
My workstation probably has more grunt, and more info on it, than the
Tandem TNS II system I was originally introduced to computers on.
Nobody could get out of the elevator on the 'computer room floor'
without a pass key and there was another door requiring two factor
(key+code) authentication before you got into the 24*7 staffed
'technician room' from which the only 'computer room' access was
available. 'computer room staff' were advised not to let anybody
they didn't personally know through either mechanism and I passed
the test the random day it was set for me (advised the guy 'sorry
sir, you are not allowed on this floor'). As servers have become
'commodity items' and people have become
accustomed to them such security has been dropped. If anything there
is a case to be made for _more_ secure methods to be required to
access today's systems. "Justin Beightol" <captnjb@xxxxxxx> wrote in
message
news:68E5C45D-D408-4AD5-B401-3780E718405F@xxxxxxxxxxxxxxxx
Hi all,
Just curious how everyone else approaches this security. A friends
office got broken into, they stole a lot of computers, luckily not
the ones with data on them. It got me thinking. If someone stole
my server, and very unlikely even with bruteforce could they get the
password for admin or most other users. Could they easily get to
the data? Can you encrypt or is the data encrypted?
Justin
--
/kj
.
- References:
- Stolen server....?
- From: Justin Beightol
- Re: Stolen server....?
- From: SuperGumby [SBS MVP]
- Re: Stolen server....?
- From: Cliff Galiher
- Stolen server....?
- Prev by Date: Slightly OT: ISA 2004 (SBS 2003 Premium SP1)
- Next by Date: Re: Exchange store moving to another drive - risks and time involved
- Previous by thread: Re: Stolen server....?
- Next by thread: Re: Stolen server....?
- Index(es):
Relevant Pages
|
