Admin Accounts
From: Leo (get_at_bent.com)
Date: 09/15/04
- Next message: --Mike: "Re: McAFEE Service STINKS!"
- Previous message: dono: "Re: better than ZA"
- Next in thread: Jim Watt: "Re: Admin Accounts"
- Reply: Kerry Liles: "Re: Admin Accounts"
- Reply: Colin B.: "Re: Admin Accounts"
- Reply: dono: "Re: Admin Accounts"
- Reply: andy smart: "Re: Admin Accounts"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: Tue, 14 Sep 2004 21:38:27 -0400
My Co. has banned the use of privileged accounts (admin or Domain admin
group membership) for day to day use within the IT group. This is, of
course, a good idea but hard for most to swallow. The main argument is that
if your not doing work that requires Admin Priv then don't use the account.
Rather, use the 'Run As' function when Admin rights are necessary.
The Argument is that in the event of a worm infiltration if an IT person
gets infected it will not spread under the admin account but just a 'normal'
user account.
Is anyone else using this or similar practices? How did you sell it to the
IT rank and file? Any thoughts or consideration are appreciated.
Leo
- Next message: --Mike: "Re: McAFEE Service STINKS!"
- Previous message: dono: "Re: better than ZA"
- Next in thread: Jim Watt: "Re: Admin Accounts"
- Reply: Kerry Liles: "Re: Admin Accounts"
- Reply: Colin B.: "Re: Admin Accounts"
- Reply: dono: "Re: Admin Accounts"
- Reply: andy smart: "Re: Admin Accounts"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
