Server Fault Stack Exchange
Server Fault Stack Exchange

Questions tagged [physical-security]

34 questions
20
votes
10 answers

Steps to take when technical staff leave

How do you handle the departure process when privileged or technical staff resign / get fired? Do you have a checklist of things to do to ensure the continuing operation / security of the company's infrastructure? I'm trying to come up with a nice…
Tom O'Connor
  • 27,440
  • 10
  • 72
  • 148
19
votes
2 answers

How to unlock an SSD disk with hdparm?

I have an SSD disk with password protection, but the password was lost long time ago... so I tried to erase the ATA security with the hdparm command. With "hdparm -I", the disk information looks interesting as below: root@ubuntu:~# hdparm -I…
user3016997
  • 193
  • 1
  • 1
  • 5
13
votes
3 answers

Is it really secure to connect to a server by SSH from hotels during a journey?

Is it really secure to connect to a server using SSH from hotels during a journey? Server: - CentOS 7 - Authorisation only by RSA key - password auth is denied - Non-standard port Workstation: - Ubuntu 14 - user password - password to use RSA…
Sergey Serov
  • 397
  • 3
  • 7
  • 14
12
votes
3 answers

Open source system for swipe card access?

We're looking at replacing our campus-wide magnetic swipe card system with something more robust. The "programmer" side of me says there's got to be an open-source, scalable solution that already does this, but all I've been able to find are…
Moduspwnens
  • 747
  • 1
  • 7
  • 17
11
votes
11 answers

Server room door security

I wanted to know if anybody had any recommendations as to how to keep the server room secure from employees. There is a lock on the door, however, anybody with a building master (maintenance, owners, custodians, etc) can open it. It would be nice…
Brett G
  • 2,023
  • 1
  • 27
  • 45
5
votes
5 answers

Security Camera in Server Room Recommendations

Does anyone have experience with network cams used for security purposes? I need to monitor a remote location (server room) from both the local network and the internet preferably. I also need the ability to record-on-event (such as motion…
cop1152
  • 2,626
  • 3
  • 21
  • 32
3
votes
4 answers

What is a secure way to transport hard drives?

I would like to transport several gigabytes (apx. 250 GB) worth of sensitive data from one location in the US to another. It seems at the moment the easiest way to do this is to ship an encrypted hard drive containing the data. What options are…
MiffTheFox
  • 152
  • 2
  • 12
3
votes
1 answer

Remotely unlock Hardware disk encryption

I am setting up a remote server at a collocation for a client and their primary request is that the data be encrypted beyond the boot partition. The main system will be in a dm-crypt LUKS container on the main drive, but since the kernel could be…
ACiD GRiM
  • 123
  • 1
  • 7
2
votes
1 answer

How to make Wi-Fi Clients happy on Airgapped network?

We have an airgapped network composed of an Ubuntu 16.04 server and a Pepwave Peplink AP Pro 300M Wireless Access point. The goal is to allow consumer users to hit this access point but, when they are on it, they are only able to access the…
Dave Collins
  • 143
  • 5
2
votes
4 answers

Should maintenance staff have access to server rooms?

After reading a similar question on Reddit, I wanted to hear from the serverfault community on the practice of letting maintenance staff in to server rooms without supervision. There are obvious dangers such as: Theft (both of physical servers and…
Tom Marthenal
  • 2,106
  • 7
  • 25
  • 37
2
votes
2 answers

What are best pratices in securing proprietary server to a customer site?

An example of this would be something like the Google Search Appliance. Areas covered might including closure and software security, remote access and updates, etc. Looking more for a solution that covers 80% of the risks and requirements, than…
blunders
  • 793
  • 6
  • 13
  • 29
2
votes
4 answers

Implement a rule to access physically the server room

We have a server room and right now it's like in wild west: the strongest one can get in and do whatever he wants. I would like to prepare a list of rules to follow to monitor the access and understand who got in so we can track who did what to…
Pitto
  • 2,009
  • 10
  • 33
  • 49
2
votes
5 answers

How to minimize the risk of employees spreading critical information?

What's common sense when it comes to minimising the risk of employees spreading critical information to rivalling companies? As of today, it's clear that not even the US government and military can be sure that their data stays safely within their…
Industrial
  • 1,559
  • 5
  • 24
  • 37
2
votes
3 answers

Lock a server within a rack of several servers

I have a 42 RU Dell rack with several 2RU servers in it. I need to prevent physical access to one of the servers in the rack, but not the others. The face plate that comes with the Dell servers is no good as they are keyed generically (sp?) and…
user56734
1
vote
2 answers

Physical security for Servers

I work in a non-profit and we need to upgrade the physical security around our new servers and DC. We can't secure the entire room, and we can't afford to purchase a proper server rack. The workaround is that the equipment will be in a nook that has…
Warn
  • 21
  • 2
1
2 3