RE: local admin account password
From: Depp, Dennis M. (deppdm_at_ornl.gov)
Date: 11/27/03
- Previous message: Rockliff, Max M.J.: "RE: local admin account password"
- Maybe in reply to: Eli Allen: "local admin account password"
- Next in thread: Depp, Dennis M.: "RE: local admin account password"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: Thu, 27 Nov 2003 15:00:47 -0500 To: Tim Eddy <EDDYT@stgeorge.com.au>, eallen@bcpl.net, jimit@myrealbox.com
Mail slot in the top of the safe? (To deposit new passwords?)
-----Original Message-----
From: Tim Eddy [mailto:EDDYT@stgeorge.com.au]
Sent: Wednesday, November 26, 2003 4:07 PM
To: eallen@bcpl.net; jimit@myrealbox.com
Cc: focus-ms@securityfocus.com
Subject: Re: local admin account password
Jimi, what was they process for when a server was built/rebuilt. We
build about 3-4 NT servers each week (average). Some are rebuilds but
most are new servers. In this case we would have the safe open every few
days.
I like Shimmi's idea, and I like Tylers extension of it.
Rgds,
Tim
>>> Jimi Thompson <jimit@myrealbox.com> 26/11/2003 2:35:30 pm >>>
<snip>>>>>>>>>>>>>>>>>
Our particular set up employed a safe which required 2 keys to open.
Each local administrator password for each server was randomly
generated, printed out, sealed in an envelope with the name of server
on
it and locked up. No one person had both keys. In the event that the
safe had to be opened, it took two people, each verifying what the
other
was doing and signing off on it in a log book. In 3 1/2 years I was
there, we only had to open the safe twice. Both times this was due to
a
catastrophic hardware failure.
<<<<<<<<<<<<<snip>
**********************************************************************
***** IMPORTANT INFORMATION *****
This document should be read only by those persons to whom
it is addressed and its content is not intended for use by
any other persons. If you have received this message in
error, please notify us immediately. Please also destroy and
delete the message from your computer. Any unauthorised form
of reproduction of this message is strictly prohibited.
St.George is not liable for the proper and complete transmission
of the information contained in this communication, nor for any
delay in its receipt.
**********************************************************************
------------------------------------------------------------------------
--- ------------------------------------------------------------------------ --- --------------------------------------------------------------------------- ---------------------------------------------------------------------------
- Previous message: Rockliff, Max M.J.: "RE: local admin account password"
- Maybe in reply to: Eli Allen: "local admin account password"
- Next in thread: Depp, Dennis M.: "RE: local admin account password"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
