?
Solved

switch from Core 2012 server to full 2012 Server. Would you need all updates for full server then if you switch?

Posted on 2015-01-29
5
Medium Priority
?
234 Views
Last Modified: 2015-01-29
switch from Core 2012 server to full 2012 Server.

Would you need all updates for full server then if you switch from CORE to GUI? We only need to switch to GUI to verify that the server is all setup successfully as CORE server. Someone told me that they don't want to use the switch to GUI because then they would need all the updates for IE and GUI, etc?? SO, what if we need to switch to GUI only to verify the server? This is in production, would that be a security risk if you switch to GUI and have no updates for lets say 30 minutes? What is the work around to verify Server CORE then?
0
Comment
Question by:creative555
  • 2
  • 2
5 Comments
 
LVL 53

Accepted Solution

by:
Will Szymkowski earned 1000 total points
ID: 40577931
There would be no security risk in doing this. However when you switch from GUI to core or from core to GUI a reboot is required. So, if this is a production server i would make note of that and do this change after hours.

If you are simply doing a verify there should be no worry about security. If you do this off hours you could also just set the local firewall to block all incoming/outgoing traffic while you do your verify (personally i think that is over kill but you can do that if you need to)

Make sure if you use the firewall method that you are sitting in front of the server and not accessing it remotely.

switch between server core and gui

Will.
0
 
LVL 97

Assisted Solution

by:Lee W, MVP
Lee W, MVP earned 1000 total points
ID: 40577984
I disagree - there is an increased security risk.  It may be brief and low, but for however long you have a GUI installed, if there are other systems on your network trying to exploit issues with DLLs and the like, it will increase your attack surface.  That said, I wouldn't be worried about.

And THAT said, what, exactly, are you trying to verify?  You shouldn't need to do this to verify the server is working appropriately.
0
 

Author Closing Comment

by:creative555
ID: 40578455
THank you both for the info!
0
 
LVL 53

Expert Comment

by:Will Szymkowski
ID: 40578505
Just to clarify, I was stating that it is not a security risk in your case as I wouldn't worry about the implications if you are doing this for a short time.

Yes over time leaving the GUI online without required patches would not be security and could be at risk.

For a short period you should be fine.

Will.
0
 

Author Comment

by:creative555
ID: 40578510
Yes. Thank you so much! I agree :)
0

Featured Post

Upgrade your Question Security!

Add Premium security features to your question to ensure its privacy or anonymity. Learn more about your ability to control Question Security today.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Background Information Recently I have fixed file server permission issues for one of my client. The client has 1800 users and one Windows Server 2008 R2 domain joined file server with 12 TB of data, 250+ shared folders and the folder structure i…
This article provides a convenient collection of links to Microsoft provided Security Patches for operating systems that have reached their End of Life support cycle. Included operating systems covered by this article are Windows XP,  Windows Server…
This tutorial will walk an individual through the steps necessary to install and configure the Windows Server Backup Utility. Directly connect an external storage device such as a USB drive, or CD\DVD burner: If the device is a USB drive, ensure i…
This tutorial will walk an individual through the process of installing of Data Protection Manager on a server running Windows Server 2012 R2, including the prerequisites. Microsoft .Net 3.5 is required. To install this feature, go to Server Manager…
Suggested Courses

839 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question