All new Registrations are manually reviewed and approved, so a short delay after registration may occur before your account becomes active.
Windows Server data protection for unrealiable provider
Hi;
We are gonna rent a dedicated server from a newly established hosting company. However, this company's workers were working for another company which was scamming people, For example, renting IP blocks and dedicated from other providers and not paying money to them.
That company eventually dissolved and refugee from that company built that new one.
I know you asking why are you choosing them?
They sell dedicated at a very cheap price so it is worth the risks kind of.
We are curious about that; can they breach our windows server and stole our software ? or they can reach our windows server and put malicious logs in order to false accusation complaint to the government?
Can we put any security measure so no one can access our windows server?
Thanks a lot.
Comments
Go with a reliable datacenter.
How secure are windows?
Basically, they can just boot a Windows installer to your server and reset Administrator password with a few commands.
But in any case, if they have physical access access to your server, they can do whatever the hell they want lol.
Your best bet would be increasing your budget and go with a well-known provider. Or, I guess those data isn't important enough to you anyways
A capable intruder with physical access can defeat any security. Game over.
On linux custom/own encryption for drives, custom kernel lacking usb, video, etc. support could work for "security".
sounds good but doesn't work for us. But is it hard to learn?
Bitlocker?
Easiest will be modifying an already open source encryption, gotta learn some C though, the rest is merely modifying the kernel configuration and recompiling, then telling the bootloader about it and remove all the "old" kernel(s).
Biittttttconnnneecccctttt
Francisco
I am afraid as long as they have dedicated control, anything you have software wise won't work, especially since it's Windows. If it were some other OS, you have had options.
Exactly, not very.
this is very clear explanation of my question thanks
Hi
If it is possible to have TPM Module in your server you can encrypt the HDD and they cannot access your data but they can erase them. For sure HP servers has this option. We use them.
https://en.wikipedia.org/wiki/Trusted_Platform_Module#Password_protection
Hi
Also BitLocker might be a solution but its better to have the software install on other partition than OS.
Not safe for some SSDs anymore.
https://www.ru.nl/publish/pages/909282/draft-paper.pdf
"Abstract—We have analyzed the hardware full-disk encryption of several SSDs by reverse engineering their firmware. In theory, the security guarantees offered by hardware encryption are similar to or better than software implementations. In reality, we found that many hardware implementations have critical security weaknesses, for many models allowing for complete recovery of the data without knowledge of any secret.
BitLocker, the encryption software built into Microsoft Win- dows will rely exclusively on hardware full-disk encryption if the SSD advertises supported for it. Thus, for these drives, data protected by BitLocker is also compromised.
This challenges the view that hardware encryption is prefer- able over software encryption. We conclude that one should not rely solely on hardware encryption offered by SSDs."