One of the most important, yet overlooked, aspects of computer system security
is keeping the physical computer and related documentation in a safe area.
This section summarizes the major risks. For background and details about
physical security risks and remedies, refer to Practical UNIX
Security by S. Garfinkel and G. Spafford, Second Edition.
Improper Access to System Hardware |
 |
Unauthorized personnel can potentially damage a system that they can
physically access even if they do not have an account on the system. For
example, a system could be turned off without following proper shutdown
procedures, damaged by physical attack, and data could be compromised. Not
protecting the physical computer system by placing it in a secure computer
room with limited access leaves your system open to potential attack.
Lack of anti-tamper devices on workstations, servers, and consoles in a trusted system configuration allows for potential system access both internally and also to external buses. Be sure to provide physical security for these components.
Improper Access to System Documentation |
|
If unauthorized personnel can review system documentation, especially that
which is written for system administrators, they can determine ways to
compromise the system. For example, a system could be brought down and
reinstalled if an unauthorized person could use the installation documentation
for HP-UX systems.
Environmental Risks |
|
Not following specified site preparation guidelines when setting up your
system enironment can leave it open to physical problems. For example, most
computer systems work best in within certain temperature ranges where they are
not exposed to water, smoke, fire, dust, insects, open windows, food, or
drink.
Printable version
