Some accounting software providers, moving to all-from-the-cloud delivery, reckon that everyone wants cloud accounting, these days. Is this better data security for an enterprise? It gives you a reliance on the network connection, on the operation of the WAN with many legs in many worm-holes. So it may not be what you want. The question is then, if you run Zepida Boxbundle from a box in your office, is that going to be secure? Is a ransomware going to encrypt it all very suddenly and cut you off? Is a trojan horse going to pass through a loose entranceway and run all manner of hideous communication with some dark rider on the outside? Is a disgruntled employee going to sabotage the system from an outpost of boredoms somewhere in your rabbit-warren?

  • Security Plank One. Ideally you will procur a fixed i.p. from your internet service provider. It is usually a small insignificant sum payable to them on a monthly basis. An upshot is that at the router level, the Boxbundle server in your office can be constrained to communicate only with one or more specified addresses on the WAN. One address should be enough for most purposes. We have one - a fixed i.p. address where queries can be queued-up for passing to your fixed i.p. address (when you get one). Our address for the queue-maker is good for certain reasons but we can help you set up an alternative. Queries on the WAN will be RC4-encrypted with a key unique to your customer account.

  • Security Plank Two. Boxbundle data is backed up to one of the specified addresses you have allowed the server to communicate with. Our fixed address would do. There are choices in the affordable systems for making it happen. This backup of your data is then way off your premises. It can be as good, if not better, than backing up to the cloud.

  • Security Plank Three. The Boxbundle operates in a box which has its BIOS set for auto-restarting after power failure. You run the box without a keyboard, mouse or monitor. You know it is O.K. only because the console lamp is bright and the scripts are working.

  • Security Plank Four. Do you set a Windows password on the box and give it to your trustworthy 2IC for safe-keeping? Maybe. You should be housing the box in a place where the average employee doesn't go. Even in a locked cupboard or a locked room. It is possible you will think that a secure physical location is enough.

  • Security Plank Five. Run a firewall program in the box. Windows Firewall, as in the Windows O/S from version 8.0 on, is probably good enough. Train it to close the unnecessary ports.

  • Security Plank Six. Do you need the box for any other reason? If not, then turn off all the native Windows file-sharing provisions.


File uploads are permitted to our scripts only where it is necessary to support the system's functioning. We have also disabled POSTS if they contain too much information and therefore would appear to be aimed at causing mayhem. And Master Setup lets you disable an employee's way-in, if need be. As a result, considering the Boxbundle system as a whole, you're probably pretty safe. There are further measures you can think about, like running an anti-virus program in the box, if you would like to be extra careful.

   
 BACK