Mostly Security Snippets from Tom Olzak
Just trying to make it through the morass of information security issues slamming the Net every day. Helping others to do the same.
Feb 25, 2009
8:30am
“
blog comments powered by Disqus
In order to implement a robust set of superuser privilege management processes and technologies you must take the following steps:
- know which users have elevated privileges;
- understand whether or not these privileged users are sharing common accounts;
- determine how much privileged access is appropriate for each superuser and if effective delegation and separation of privilege is in place amongst superusers;
- figure out whether or not a user’s access and the corresponding privileges can be completely and immediately removed when a user departs an organization (as opposed to still being an operational “orphaned account”);
- enforce accountability and detect potential threats in real time by monitoring and reporting what these users are doing.
Page 1 of 1
