[dba-Tech] Server Hardening? Really?

John Bartow john at winhaven.net
Tue Mar 5 11:57:49 CST 2013


Hi Dan,
There are better methods than remote desktop. I use Team Viewer as its part
of my managed services but no one else needs to have remote access to the
servers so it's not the same issue. I have used LogMeIn in the past. At $35
or something like that it's a good deal and has many security features. At
one client where I don't "do it all" and just have an application on site I
was set up with my own VPN connection. They can, I would suspect, monitor
what I do while logged in. As it should be.
John B

-----Original Message-----
From: dba-tech-bounces at databaseadvisors.com
[mailto:dba-tech-bounces at databaseadvisors.com] On Behalf Of Dan Waters
Sent: Tuesday, March 05, 2013 11:20 AM
To: 'Discussion of Hardware and Software issues'
Subject: [dba-Tech] Server Hardening? Really?

One of my customers is a subsidiary of a larger company.  That company has
contracted with Computer Services Company (CSC) to provide computer and
network services.  (CSC was recently fired by the US Air Force for not
fulfilling a contract to provide a large software system.)

 

At my customer, CSC is doing what they call 'server hardening'.  A
consequence of this is that remote desktop access is no longer allowed - so
I can no longer directly update or maintain the system I've built for them.
Even my customer's employees have lost their remote access to this server.
I have yet to figure out how to make this work.  BTW, the folks at my
customer have been infuriated by CSC's actions for a couple of years now and
they are angrier than I am.

 

So, I'd like to ask everyone if you believe that preventing remote desktop
access is appropriate for server hardening.  Or, what steps could be done to
provide equivalently secure remote access?

 

 

Thanks!

Dan Waters 

 

_______________________________________________
dba-Tech mailing list
dba-Tech at databaseadvisors.com
http://databaseadvisors.com/mailman/listinfo/dba-tech
Website: http://www.databaseadvisors.com



More information about the dba-Tech mailing list