Don’t forget to secure your UPS!

by Mitch Tulloch [Published on 4 April 2007 / Last Updated on 4 April 2007]

Physical security for your servers may be useless if you don't secure your UPS also.

Here’s a security precaution you may not have thought of before. Syskey is supposed to be a great way of securing a Windows server against physical attack. But I’ve actually heard of thieves breaking into a server room and stealing a server *with* the UPS backup power supply still attached to it. The idea is that the server is still turned on so when they get back to their hideout they can try various over-the-network brute force attacks on the server to compromise its Syskey machine key, yikes! The moral of the story? Make sure this scenario isn’t possible somehow, maybe by isolating your UPS in a separate room or welding it to the floor or something similar.


Mitch Tulloch was the lead author for the Windows Vista Resource Kit from Microsoft Press, which is THE book for IT pros who want to deploy, maintain and support Windows Vista in mid- and large-sized network environments. For more about Mitch, visit his website

See Also

The Author — Mitch Tulloch

Mitch Tulloch is a well-known expert on Windows Server administration and cloud computing technologies. He has published over a thousand articles on information technology topics and has written, contributed to or been series editor for over 50 books.

Featured Links