Rick Faircloth wrote: >>> - Additional Trimmings: $0 (Already have network AV and hardware >> >> Accounting doesn't work that way. > > I don't know how your accounting works (you sound like you work for a > corporation, but mine works any way I want it to, since I'm the one doing > the work, billing, and paying the bills. If I don't have to spend any money > on network AV or a firewall...well, that calculates out to $0...
But $0 expenses does not equate to $0 cost. > There are risks I'm sure with not "hardening the TCP/IP stacks" Yes, although other risks then you might imagine. By default Windows uses ports 1024 to 5000 for ephemeral connections with a timeout of 4 minutes before they can be reused. If your server is busy, it can cycle through those connections at a higher rate and you will get all sorts of socket errors. Typically I both set the timeout lower and raise the limit for ephemeral connections to 25000. There are added benefits in your resistance against DoS attacks and responsiveness under load, but running out of sockets is the main reason. > or "pulling the plugs > on hard disks while the system is running to check to check if the alarm > goes, etc.", (is that for security or what?) It is to verify you have correctly set up your RAID. When you pull the plug on a drive in your RAID, not only the system should continue to run, it should also warn you that something is wrong. Because if you don't get a warning, you don't fix the problem and you have a real problem when the next drive dies. > but there's also security overkill that may or may not be necessary > for a one server operation. The Windows firewall (I actually use IPSec rules) thing is for security, but the rest is all for reliability. And I think that is even more important for a single-server operation then for a multi-server operation that can just move customers to another box. Jochem ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~| Message: http://www.houseoffusion.com/lists.cfm/link=i:4:244045 Archives: http://www.houseoffusion.com/cf_lists/threads.cfm/4 Subscription: http://www.houseoffusion.com/lists.cfm/link=s:4 Unsubscribe: http://www.houseoffusion.com/cf_lists/unsubscribe.cfm?user=89.70.4 Donations & Support: http://www.houseoffusion.com/tiny.cfm/54
