Internally it's a different matter, but if an external hacker can gain access to you internal servers, there are plenty of ways I can enumerate what's running where without giving away the server name. Internally there are lots of other methods that can and should be taken anyway.
We use Mail-country (ie mail-au.domainname.com, file-au, dns-uk, dns-us, mx-us, mx-au) which helps us identify quickly which server role we are talking about and which location we are talking about. Greg From: Clayton Doige [mailto:[EMAIL PROTECTED] Sent: Tuesday, 15 April 2008 2:02 AM To: NT System Admin Issues Subject: RE: Naming convention for Servers Quite right, if they know what they are doing, but mr happy hacker is not going to spend a minute or two breaking into your network and will have spent a good deal of time gathering all the information they need BEFORE they attack, but someone internal who has been paid to try and steal stuff might not have that skill set, even if they do have the permissions to get places. I'm just paranoid, and like avoiding giving anything away. No hack happens in 30 seconds. Every wall you put up makes things take more time, and the more time someone has to take increases the chances of them making a mistaking and leaving a trace of the hack, which is all a sysadmin can hope for in terms of defense. -----Original Message----- From: Kurt Buff [mailto:[EMAIL PROTECTED]<mailto:[EMAIL PROTECTED]>] Sent: 14 April 2008 15:53 To: NT System Admin Issues Subject: Re: Naming convention for Servers Mr. Happy Hacker will defeat this obscurity in about 30 seconds with nmap, or other port scanning tool of choice. On Mon, Apr 14, 2008 at 7:16 AM, Clayton Doige <[EMAIL PROTECTED]<mailto:[EMAIL PROTECTED]>> wrote: > > > > > The only reason you might want to stay away from a naming convention is > security. If a hacker gets on your network and can enumerate your servers > they will see E2K3FE or SQL05CRM (for example) and know what they are > hitting, thus making it easier for them to find what they are after. > > > > ~ Upgrade to Next Generation Antispam/Antivirus with Ninja! ~ ~ <http://www.sunbelt-software.com/SunbeltMessagingNinja.cfm> ~
