server security

Right now our Dell Server is in a room that is accessible to many people.  I don't have a better place to put the server since it needs multiple network cables plugged into it for redundancy.  Directly behind the server are 8 wall ethernet ports.  I don't have that kind of config anywhrere else in the office.  My question is how to secure the server in an area like this?  Should I put it in a cage or something like that?  Not sure.  I want it to be locked and also that someone would not be able to come in and take it our of the building.
Who is Participating?

[Product update] Infrastructure Analysis Tool is now available with Business Accounts.Learn More

I wear a lot of hats...

"The solutions and answers provided on Experts Exchange have been extremely helpful to me over the last few years. I wear a lot of hats - Developer, Database Administrator, Help Desk, etc., so I know a lot of things but not a lot about one thing. Experts Exchange gives me answers from people who do know a lot about one thing, in a easy to use platform." -Todd S.

Dr. KlahnPrincipal Software EngineerCommented:
Locking up the server in a box is only practical after you've negated easier ways to damage it such as flicking the circuit breaker that serves it, kicking it hard to fail the disks, pulling the AC cord out, stuffing the network sockets with Super Glue and cutting the cables, or peeing in the case.  In this case it sounds like it's not practical to prevent any of these.

Two alternatives are to (a) drill a hole in the floor, epoxy in a ring bolt and attach it to the server case with a Kensington lock, or (b) watch it with two obvious cameras and two hidden ones and send the video to a secure site.
mkramer777Author Commented:
anyone else?
Lee W, MVPTechnology and Business Process AdvisorCommented:
It's up to you how much you want to secure it.  Not us.

You can build a secure room.  You can put it in a cage secured to the floor or wall.  You can get rid of it entirely and go to the cloud.  At a minimum if you can't physically secure the server to your satisfaction, you should be securing the data - the server should be encrypted.  And you should have a good, reliable, TESTED, backup/disaster recovery option in place so you're not out of business if the server was stolen... or destroyed in a fire. Or something else.
Defend Against the Q2 Top Security Threats

Were you aware that overall malware worldwide was down a surprising 42% from Q1'18? Every quarter, the WatchGuard Threat Lab releases an Internet Security Report that analyzes the top threat trends impacting companies worldwide. Learn more by viewing our on-demand webinar today!

mkramer777Author Commented:
We have an offisite Veeam DR solution in place right now.  So your saying screw the server if it is being backed up?    All I'm getting at is I've heard several IT people who have come to the office and say that having the server in a room that is not locked is a no no.  Don't have anywhere else to put it since the other rooms only have 2 network wall ports in each.    I just don't want people to be able to take it away.  Maybe this is not worth trying to do.
Dr. KlahnPrincipal Software EngineerCommented:
If the only issue at hand is that it might be stolen, then image it daily to an identical server kept off-site in somebody's house that is trustable.  Then when it's stolen you look at the video footage, fire who did it, and roll in the identical backup (because the police will keep the original one as evidence until the case goes to trial.)
Lee W, MVPTechnology and Business Process AdvisorCommented:
So your saying screw the server if it is being backed up?
You will not find these words or this sentiment anywhere in my comment.  What I'm saying is *WE* can't determine the value of your data.  *I* would value trade secrets highly and it's FOOLISH not to physically secure such data behind a limited access locked room.  If you don't have such a room now, you renovate and build one.  It may cost you thousands to do, but if the DATA is WORTH that, that's what you do.  If your data is little more than an email archive of sales orders, it's not *TO ME* that important.  I would still SECURE the data with encryption, but it's probably not worth the thousands required to build a physically secure place.  There are levels of security in between.  A locked cage for example.  Any security can be broken with enough effort and expense.  The question is how much money do you want to invest to secure your data.  Yes, any Pro will tell you to lock up the server, but any real pro will tell you the VALUE of the data is what determines how much you put into its security.  If the data has no value to you, you can put it on a public web site.

Experts Exchange Solution brought to you by

Your issues matter to us.

Facing a tech roadblock? Get the help and guidance you need from experienced professionals who care. Ask your question anytime, anywhere, with no hassle.

Start your 7-day free trial
Lee W, MVPTechnology and Business Process AdvisorCommented:
If the data is that valueable and you don't have the physical place to secure it, another option is to locate the server in a facility designed for security and use a high-speed line either dedicated or via VPN to allow users access.  It's a kind of Private Cloud instead of using the public cloud services such as AWS or Azure.
andyalderSaggar maker's framemakerCommented:
I was going to suggest a soundproof rack, then you can site it in a general office and so long as there's more than one person using the office they collectively improve physical security. They're not cheap though -
It's more than this solution.Get answers and train to solve all your tech problems - anytime, anywhere.Try it for free Edge Out The Competitionfor your dream job with proven skills and certifications.Get started today Stand Outas the employee with proven skills.Start learning today for free Move Your Career Forwardwith certification training in the latest technologies.Start your trial today
Server Hardware

From novice to tech pro — start learning today.