Re: How secure is "Password Safe Application" ?
- From: "Marlon Brown" <MarlonBrown@xxxxxxxxxxxxxxxxxxxxxxxxx>
- Date: Wed, 8 Feb 2006 14:11:28 -0800
The primary use is to put "service" accounts (for SQL, Sharepoint,
thirdy-part apps) that are unfortunately need to be shared.
The admins must not put their own accounts there and each admin should have
his own password.
"Robert Moir" <robspamtrap+msnews@xxxxxxxxx> wrote in message
news:uXnCVFPLGHA.2124@xxxxxxxxxxxxxxxxxxxxxxx
Marlon Brown wrote:
Do you think it is an acceptable security practice use an application
such as "Password Safe Application" from SourceForget.net to store
server passwords in my organization ? Some admins want to store such
Password Safe Application on a network share, protected by NTFS
folder permissions to the admin group.
Please advise.
Well its probably safer than having them write the passwords on post it
notes and hide them under their keyboards.
What exactly are you hoping to achieve? What will this password repository
be used for exactly? To store centrally held but seldom used "master"
passwords "in the event of a disaster"?
Or for forgetful admins who are worried they can't remember their
passwords from one day to the next?
I assume your admins each use their own admin account rather than a shared
one so that you stand some chance of auditing who made which changes?
.
- Follow-Ups:
- Re: How secure is "Password Safe Application" ?
- From: Robert Moir
- Re: How secure is "Password Safe Application" ?
- References:
- How secure is "Password Safe Application" ?
- From: Marlon Brown
- Re: How secure is "Password Safe Application" ?
- From: Robert Moir
- How secure is "Password Safe Application" ?
- Prev by Date: Re: How secure is "Password Safe Application" ?
- Next by Date: Dialer.wsv
- Previous by thread: Re: How secure is "Password Safe Application" ?
- Next by thread: Re: How secure is "Password Safe Application" ?
- Index(es):
Relevant Pages
|
