For security reasons I’ll spare everyone here I need to assign passwords to all my server id files. Is it possible to have a password protected server id file and still be able to restart the server without having to be at the console to type in the password? Is there a better - or at least alternative - way to secure Domino servers aside from putting passwords on these files? I realize there have to be other security failings in order to get a hold of the server id’s, but assuming I have no control over the way those issues are addressed can I do something to insure anyone who grabs a server id can’t use it in conjunction with a client to access all the mail files etc on other Domino servers?
Subject: Server id passwords
First of all, a security measure was introduced in R4 to prevent a user from using a server ID to access server-based databases: the User Type property in the ACL.
The two above-highlighted user types, if used, will prevent a Notes client using a server ID from matching up against a server entry in the ACL. In other words, the server can tell the difference between an incoming client session and an incoming server session. Specifically, if the server ID being used by the user matches up against a server in a group assigned the Server group user type, they’ll simply get the default level of access, but if they use a server ID which matches up against a server assigned the Server user type, they’ll be granted no access to the db, and get kicked out.
So the real danger of compromised server IDs is not users switching to them, but that someone can set up a server using that ID, and then successfully masquerade as that server, fooling users into entering potentially sensitive corporate data into what they think are corporate dbs. There are some in the community who believe that password-protecting server IDs is a good idea if you want real security, and if you search the forums (probably the R5 forum), you might find more ammo for that argument (you won’t get it from me).
But the direct answer to your question is, AFAIK, No. There is no software I know of which will enter the password for you, so using remote control S/W like PC Anywhere or whatever Windoze builds in is your best bet.
Subject: RE: Server id passwords
In reviewing some of the ACL’s I think I now understand. I was not looking carefully at the user type as a key, many databases have LocalDomainServers as “unspecified” with manager access. If I read this correctly I need to make sure those have Server Group assigned and any individual server in the ACL has user type of “server”. I feel dumb for asking, but is this correct?
Thanks by the way for taking the time to write all that out!
Patrick
Subject: RE: Server id passwords
"I feel dumb for asking, but is this correct?"Absolutely.
“Thanks by the way for taking the time to write all that out!”
And thank you for appreciating it; that’s frighteningly rare in the forums…
Subject: RE: Server id passwords
Great. I’m not sure why those databases are set up that way - to quote Homer Simpson: “It was like that when I got here” and I guess since it was working I never bothered to change it.
Again thanks for taking the time to explain, that it pretty rare these days as well!