Treat the physical security of your servers with as much seriousness as you do network security. Using the checklist below, you should be able to make your physical location a bit more secure; at a minimum, you'll make things a lot more difficult for anyone looking to cause damage.

  • Disable servers' floppy and CD-ROM drives if you don't need them and if your OS permits this action.
  • In your BIOS, disable booting from floppy disks or from CD-ROM. Also, set a BIOS password so that others can't change this setting.
  • Don't leave documentation of your systems, network architecture, or passwords near the servers. Store documentation in a secured cabinet that requires a key for access, or better yet, store it on the network only and use access control to protect it.
  • Protect network devices such as routers, hubs, and switches. A switch in an unlocked closet could be used as an access point to cause network downtime.