Server Hardening Guide - Securing Your Mobile Server & Web Client

Hi All,

I posted a question yesterday relating to a hardening guide for a Mobile Server installation which appears to have dissappeared from the support community, so I’ll re-ask it.

Given the default setting for the mobile server also exposes the Web Client to the internet, is there a hardening guide to ensure the security of the web service/app?

As well as, despite reading the default behaviours of the storage of CCTV footage, I still can’t seem to understand what happens to recordings if you set 7 day retention, but the storage drive only holds 5 days? Will the server automatically record over and/or delete the oldest files to make room for the newest footage?

Cheers

Willo

I have not heard of any hardening guide for the Mobile Server, but here’s what I would do:

• Place the Mobile Server in a DMZ
• Block/Firewall all, but the known external ports
• Use an SSL certificate for the Mobile Server/ clients

Regaring the archive/delete cycle: The Mobile server does not manage footage or retention, but the backend Recording Servers normally starts archiving or deletion on a FIFO (first in first out) basis when the drive reaches 90% full (Windows explorer gives a warning).

So you can certainly configure 7 days of retention, even if the drives holds only 5 days, providing the drive performance can handle constant archiving/delettion while also recording.