Physical Security
Users and access to the system
Can users touch the system?
- Even if they can not touch it directly, they may be able to effect it (ie remove power to cause a restart).
- Can users put media into system? CD/DVD, USBKey or other USB device.
- Can they install a key logger.
- Can they open the system? They could remove the hard drive and mount it in another system. If they remove battery from motherboard, does this clear BIOS password?
Bootup
- Password protect BIOS so hacker can't modify system settings (boot media for example)
- Boot issue: If hacker chooses the medium, they can boot their own OS, mount the file systems and read/modify data, scan the network etc. See I Forgot My Administrator Password! and ...
Choices:
- HD (best and only default)
- Network (careful, hacker can be on the network)
- CD, Floppy: Hacker can boot from these
- Bootloader (linux issue): Password protect GRUB, remove GRUB timeout to prevent hacker from booting linux in single-user mode.
- Actual boot (linux issue): Disable interactive step through boot sequence.