CompTIA^® Server+ Exam Notes : Server Hardening Techniques

4. Security

4.1 Server hardening techniques

Hardware hardening

There are several ways of hardening your server computer. These include disabling unneeded hardware and physical ports/devices:

1. BIOS password - Ensures that only authorized persons have access to change or view BIOS settings.

2. Disable WOL (Wake on LAN) - Ensures that the computer is not started remotely and compromised (say, by scanning for open ports, guest login, etc.)

3. Setup boot order - Ensures that a hacker is not using a USB drive to start the computer, and later gain access to the resources on the server.

4. Chassis locks / intrusion detection - Ensures that a hacker doesn't have access to internal components such as hard drive and can't change the physical settings.

Wake-on-lAN: Network administrator needs to maintain (update software etc.) the client computers often. In the past, they need to go to the client computer to power it ON. But with Wake-on-LAN, it is possible to remotely and automatically power up the client computers for necessary maintenance. It is important to set up password protection for Wake-on-LAN features.

Anti-virus package: This is a program that checks the files for any virus infection. Upon detection of any virus, it typically warns the user of the existence of such virus and prompts for further action. It is important that servers are equipped with appropriate AV software for protection against malware.

Proxy server: Proxy server is used for accessing the public Internet from a private IP address. It basically translates the IP addresses from one to another, and allows several users with private IP addresses to access the Internet using one or more public IP addresses. A proxy server may be used to hide the internal network from external attacks.

Fire Wall: A fire wall is typically used for preventing unauthorized access to internal resources of a company.

Chassis intrusion detection: The chassis intrusion switch is used to ensure that the computer remains shut down when the case is open. Sometimes, it will also prevent booting of the computer (even after the case is closed) to warn that there was an intrusion.

• 1. Server Architecture
  • 1.1 Server Form Factors
  • 1.2 Server Components
  • 1.3 Power and cooling components
• 2. Server Administration
  • 2.1 Server Operating systems
  • 2.2 Server Roles and requirements
  • 2.3 Access and control method to administer a server
  • 2.4 Server maintenance techniques
  • 2.5 Asset management and documentation
  • 2.6 Virtualization
• 3. Storage
  • 3.1 Primary storage devices
  • 3.2 RAID levels
  • 3.3 Features of various storage technologies
• 4. Security
  • 4.1 Server hardening techniques
  • 4.2 Basic network security systems and protocols
  • 4.3 Logical access control methods
  • 4.4 Implement proper environmental controls and techniques
• 5. Networking
  • 5.1 IP addressing and Infrastructure services
  • 5.2 Various ports and protocols
  • 5.3 Cable management procedures
• 6. Disaster Recovery
  • 6.1 Disaster recovery principles
  • 6.2 Backup techniques
• 7. Troubleshooting
  • 7.1 Troubleshooting theory and methodologies
  • 7.2 Troubleshooting hardware problems
  • 7.3 Troubleshooting software problems
  • 7.4 Diagnosing the network problems
  • 7.5 Diagnosing security issues