[SunHELP] EMC Symmetrix SAN Security
sunhelp at sunhelp.org
sunhelp at sunhelp.org
Fri Dec 22 10:59:39 CST 2000
John,
Is the question truly about the SAN or simply the Symmetrix itself? The reason
I ask is that the answer varies depending upon the approach. From the single
perspective of the disk array itself (Symmetrix), there is no way that an
individual could access or change access of a server to disk that is _not_
already allocated to it presently. This is internal to the array itself to
which there are many safeguards. The "bin" file would have to be altered and
that can only be done from direct access to the disk array itself. Security is
tight on remote dial in capabilities, not to mention the physical security of
the box in your datacenter. The processor in your array also has security built
into it, so multiple breaches would be necessary just to gain access much less
have the knowledge about the configuration to allow for reconfiguration thereof.
As for the SAN, safeguards are built into the administration station software.
Again this must also rely upon physical security as well as access to use the
station from an OS level as well. I hope this helps.
Marc
John Duksta <jduksta at genuity.com> on 12/22/2000 10:08:47 AM
Please respond to sunhelp at sunhelp.org
To: sunhelp at sunhelp.org
cc: (bcc: Marc D. Johnson/Forsythe)
Subject: [SunHELP] EMC Symmetrix SAN Security
Does anyone have any experience securing an EMC Symmetrix Storage
Array? I'm looking for any idea of how easy/difficult it would
be for someone who has perhaps r00ted one box with it's storage
on the array to gain access to a virtual disk/raid belonging to
another box attached to the array.
Thanks,
-john
--
John C.C. Duksta, CISSP <jduksta at genuity.com>
PGP Fingerprint: 2037 FB34 8D4A 22D7 3EB3 EEF9 3ABA 997E F964 0EAF
_______________________________________________
SunHELP maillist - SunHELP at sunhelp.org
http://www.sunhelp.org/mailman/listinfo/sunhelp
More information about the SunHELP
mailing list