[dba-Tech] Server Hardening? Really?

Gustav Brock gustav at cactus.dk
Tue Mar 5 11:29:41 CST 2013 

Hi Dan

For such cases we install LogMeIn (free edition) on the server to be able to
access it from outside.
Of course, this requires that you can gain the rights to install LogMeIn.

/gustav

-----Oprindelig meddelelse-----
Fra: dba-tech-bounces at databaseadvisors.com
[mailto:dba-tech-bounces at databaseadvisors.com] På vegne af Dan Waters
Sendt: 5. marts 2013 18:20
Til: 'Discussion of Hardware and Software issues'
Emne: [dba-Tech] Server Hardening? Really?

One of my customers is a subsidiary of a larger company.  That company has
contracted with Computer Services Company (CSC) to provide computer and
network services.  (CSC was recently fired by the US Air Force for not
fulfilling a contract to provide a large software system.)

 

At my customer, CSC is doing what they call 'server hardening'.  A
consequence of this is that remote desktop access is no longer allowed - so
I can no longer directly update or maintain the system I've built for them.
Even my customer's employees have lost their remote access to this server.
I have yet to figure out how to make this work.  BTW, the folks at my
customer have been infuriated by CSC's actions for a couple of years now and
they are angrier than I am.

 

So, I'd like to ask everyone if you believe that preventing remote desktop
access is appropriate for server hardening.  Or, what steps could be done to
provide equivalently secure remote access?

 

 

Thanks!

Dan Waters

More information about the dba-Tech mailing list