Solved

Exchange InformationStore Backup file security / General FileSecurity

Posted on 2011-03-18
5
228 Views
Last Modified: 2012-05-11
Hi

The SBS 2003 R2 server takes a NT backup of Exchange InformationStore to a  NAS -disk where everyone have full rights.

1. What if the NAS-disk is stolen? Can anyone recover mails from there?
2. What if both the SBS 2003 server and the NAS-disk are stolen? Can anyone recover mails from there?
3. If the SBS 2003 server is stolen propably all files from shares can easely recovered/copied/opened, right?

Thanks in advantage,

Juha
0
Comment
Question by:RimFire007
  • 3
  • 2
5 Comments
 
LVL 74

Accepted Solution

by:
Glen Knight earned 500 total points
ID: 35163799
>>What if the NAS-disk is stolen? Can anyone recover mails from there?

Yes, using 3rd party tools the contents of the EDB file can be recovered to PST files

>>2. What if both the SBS 2003 server and the NAS-disk are stolen? Can anyone recover mails from there?

Same as above.

>>If the SBS 2003 server is stolen propably all files from shares can easely recovered/copied/opened, right?

Yes, that's why physical security is the most important aspect of your security plan.
0
 

Author Comment

by:RimFire007
ID: 35174757
Thanks demazter:

Additionally. Any easy way to encrypt the Exchange backup files? Since the BUs are stored to NAS the TrueCrypt isn't the option here. Does the SBS 2003 include any "built in" encryption tool? I do have Symantec installed but I would love to use something else here. We copy the InformationStore BU files over Internet to a Third Party Secure Store.

Rgs, Juha
0
 
LVL 74

Expert Comment

by:Glen Knight
ID: 35174824
Sadly not.  You may be able to use a 3rd party tool but I am not aware of any.
0
 

Author Closing Comment

by:RimFire007
ID: 35204638
Thanks demazter

I just wanted to have second opinion and unfortunatelly the physical security of the server area seems to be the only solution here when using MS build in solutions.

I reported the customer facts as demazter explained.

Rgs,

Juha
0
 

Author Comment

by:RimFire007
ID: 35204642
Additionally

I was able to change Windows permissions to NAS only for Domain Administrators and NAS local administrator.
0

Featured Post

Do email signature updates give you a headache?

Do you feel like all of your time is spent managing email signatures? Too busy to visit every user’s desk to make updates? Want high-quality HTML signatures on all devices, including on mobiles and Macs? Then, let Exclaimer solve all your email signature problems today!

Join & Write a Comment

Find out how to use Active Directory data for email signature management in Microsoft Exchange and Office 365.
This process describes the steps required to Import and Export data from and to .pst files using Exchange 2010. We can use these steps to export data from a user to a .pst file, import data back to the same or a different user, or even import data t…
In this video we show how to create a Distribution Group in Exchange 2013. We show this process by using the Exchange Admin Center. Log into Exchange Admin Center.: First we need to log into the Exchange Admin Center. Navigate to the Recipients >>…
In this video we show how to create an email address policy in Exchange 2013. We show this process by using the Exchange Admin Center. Log into Exchange Admin Center.:  First we need to log into the Exchange Admin Center. Navigate to the Mail Flow…

757 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

22 Experts available now in Live!

Get 1:1 Help Now