Security at PALS
  • All web servers are configured to use only secure protocols and ciphers
  • All servers run a stable, long term support (LTS) version of Linux
  • All servers are kept up to date
  • All servers are hosted in a secure data center with restricted physical access
  • Default firewall policy is to block everything and allow access only to necessary ports
  • There is a perimeter network firewall as well as a host-based firewall on each server
  • Remote access to servers is only allowed using secure protocols (e.g., ssh, sftp)
  • Remote access to servers is restricted to a needs only basis
  • Minnesota State Security Team performs regular security scans of our network and servers
  • We run system and network monitoring to detect potential issues
  • We regularly scan logs to audit for any possible issues
  • All servers are regularly backed up for the purposes of data recovery and business continuity