Remote Hacking via KVM

1.  Get a spare KVM switch.
Manage your risk! This is a must in case your existing switch becomes faulty or is either deliberately or accidentally damaged – otherwise access to your servers will be difficult.

By holding golden spares the fix time is reduced. 

Many KVMs actually come with some redundancy built in eg of power supplies, network cards etc and these would be a better investment if they are managing multiple servers.

2.  Regularly Change the KVM Admin Password
A top priority is to change the KVM administrative access immediately any administrator leaves. The latest KVM systems allow direct links into your operating system databases (such as Microsoft’s Windows Active directory) or a Radius database so any changes are automatically reflected in your KVM access rights. 

3.   Control Remote Switch Access
The latest KVM systems allow for many ways to restrict access to the systems: linking into external databases for authorisation, restricting the IP ranges that can access the systems in other words, access control lists (ACLs) that allow access only from a particular IP address which is acting as a bastion host for access, to name a few methods.

The key is to invest some time in enabling the latest security tools provided to get the full benefit from the systems.