Thoughts on project 403

The focus will be on self-managed servers. These need someone to be in charge of them. That person has responsibilities. This project will explain the most basic and important of these responsibilities. If there is time, a Learn course will be produced. It will be compulsory for the managers of self-managed servers to achieve a sufficiently high mark in this course. If there isn't, we'll knock up some explanatory web pages initially and hope to grow them into a Learn course later on.

These, more or less, are the responsibilities laid on the machine manager by the self-managed policy:

  • Everyone using the machine is bound by the computing regulations
  • If the machine is disruptive it'll be disconnected from the network
  • If the machine gets compromised it'll be disconnected from the network
  • Users must abide by the School's policies
  • You must obey the law. (Notable laws: GDPR, freedom of information, RIPA.)
  • External networks come with Acceptable Use Policies.
  • You must keep its OS and software fully updated with security fixes.
  • You must configure the OS and software to be secure enough, too.
  • You must not create a wireless network without explicit permission
  • You must agree to the University's periodical electrical safety tests.
  • If a vulnerability is identified, you must fix it in a timely manner.
We can add some more:
  • Keep it in a secure enough place
  • Somebody has to be officially in charge of it.
  • That somebody has to be currently in the School of Informatics!
  • Ensure that you're happy with the machine's manager's documentation of their configuration of the machine.
  • Are you aware of how frequently disks can fail?
  • Given this, are you happy with the data backup arrangements?
  • Are you keeping offsite backups? Are they secure enough?
  • RAID?
  • If you're managing a bunch of machines, consider automating the configuration.

Next - edit these down to the simplest possible list of essential points.

Topic revision: r9 - 17 Dec 2018 - 14:28:38 - ChrisCooke
 
This site is powered by the TWiki collaboration platformCopyright © by the contributing authors. All material on this collaboration platform is the property of the contributing authors.
Ideas, requests, problems regarding TWiki? Send feedback
This Wiki uses Cookies