[techtalk] Physical security example

Curious curious at curious.org
Tue May 15 16:48:03 EST 2001 

Just a note about physical security.. keep in mind.. if your physical security plans aren't realistic... you may end up creating a worse situation.. ie. lets take a door where you have to use 10diffrent bio-scans to get into the facility.. and people have to do it constantly.. how long do you think it'll take before people start "holding the door open" to strangers or leaving it propped open and the like?

by the way.. I don't entirely buy the classical "if they have physical access then they own the box" ideal.. to me thats like saying just because I can touch a painting at an art gallery I own it.. there is more to accessing a system then getting your hands on it.. 

random,
curious



On Sat, May 12, 2001 at 06:25:27PM -0500, Samuel Tesla wrote:
> -----BEGIN PGP SIGNED MESSAGE-----
> Hash: SHA1
> 
>     To add my bit to the pile on how systems must be physically secure...
> 
> At my office, our data center takes up approximately one fifth of the floor.
> It's big.  It's got about $80 million worth of hardware in there.  All of our
> production, test, and development servers are mounted in racks (and displayed
> nicely behind a window...).  The only entrance to the datacenter is rather well
> secured. 
> 
> To gain legitimate access one must have a badge that will work, *AND* pass the
> palm-scan (gotta love biometrics).  If either of these tests hasn't been past
> and the door is jimied open (or some such), an alarm goes off.  There are video
> cameras monitoring the entrance.  I haven't had much of a tour of the rest of
> the data center, since I'm a developer, but I believe they've got similar
> security measures elsewhere behind the doors.  Hell, the've got the same getup
> on the telco closet (where all the switches for the office are).
> 
> If you let people have physical access to your computer, you've already lost
> the battle. 
> 
> - -- 
>  -=--=--=--=--=--=--=--=--=--=--=--=--=--=--=--=--=--=--=--=--=--=--=--=--=--=-
>  Samuel Tesla                                                   johngalt at io.com
>                               Today's Fortune Is:                             
> 
>  Why is it taking so long for her to bring out all the good in you?
> 
>             print: CB1E 678E E7E1 827C E30B  2618 6513 F23C C24B 1FFE           
>  -=--=--=--=--=--=--=--=--=--=--=--=--=--=--=--=--=--=--=--=--=--=--=--=--=--=-
> 
>  
> -----BEGIN PGP SIGNATURE-----
> Version: GnuPG v1.0.0 (GNU/Linux)
> Comment: For info see http://www.gnupg.org
> 
> iD8DBQE6/cZqZRPyPMJLH/4RAkq2AJ9I9RMR2Lt4W5oZjCI1jnhOPcJFgwCfZ9rv
> Y5SJTDaJJHkW9XCBHWOeicg=
> =lbei
> -----END PGP SIGNATURE-----
> 
> 
> _______________________________________________
> techtalk mailing list
> techtalk at linuxchix.org
> http://www.linux.org.uk/mailman/listinfo/techtalk

-- 
 /"\  . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 
 \ /   ASCII Ribbon Campaign      curious at curious.org
  X   - NO HTML/RTF in e-mail     http://www.curious.org/
 / \  - NO Word docs in e-mail    "This quote is false." -anon

More information about the Techtalk mailing list