2
I'm going to outsource some development work to a stranger. I would like to run down my setup and what I've done thus far to take some precautionary measures. I'm hoping you all can provide me with some more advice, gotchas, or things to consider.
- Server is running Windows 7 Ultimate.
- I'm behind a Linksys router.
- I have installed the free version of AVG anti-virus software.
- The developer remoting into the server will have 'user' privileges and will require a username & password.
- I'm using the free DynDNS service and client application to manage a static url for access.
- Default Windows security settings on: firewall, uac, etc.
- Other PC on the network is password protected.
- Source code environment will be in a sandbox: no live connection strings, data, or ftp ability. I will be tasked with QA and releasing new software.
How is this setup? What would you have done differently? What, if anything should I do differently to protect my machine and network?
Thanks.
Maybe you can expand a bit on the virtual environment? Or mirroring the session? – Mike – 2009-09-01T17:06:57.770
Virtual Environment - try running vmware server, virtualbox, xen etc. restrict the user in the virtual environment so you can take snapshots regularly (if you need to revert back for something).
Mirroring a session - all depends on your setup. But VNC may help? Or perhaps using some other display mirror driver? – J Sidhu – 2009-09-01T20:38:57.937
Also, keep an eye on the connections established before and after the work is finished. You dont want him running a backdoor service. Use netstat or other network security tools. I would also enocurage an IDS (Intrusion Detection System) so you can catalog which files, if any, get changed. I think this is a must if you want to allow a stranger into your system. – J Sidhu – 2009-09-01T20:42:03.000
Thanks - I'm going to look into vmware server now as well as vpn/rdp. – Mike – 2009-09-01T22:53:33.077