Re: BYPASS privilege !!

From: "Richard B. Gilbert" <rgilbert88@xxxxxxxxxxx>
Date: Mon, 11 Jun 2007 17:00:27 -0400

JF Mezei wrote:

In the end, isn't it still true that for a functional system, you still need to trust at least one system manager who could still wreak havok on your system if he truly wanted to ?

Or can a system truly be locked down to a point where the system manager cannot do his job without supervision from the security folks ?

Yes, it can! It may take me days to remember exactly what it's called but there is a secondary password that can be required to log in to an account; IOW two passwords, only one of which is known to the system manager. I've never known a site that actually used this feature but it's there!

.

Follow-Ups:
- Re: BYPASS privilege !!
  - From: BaxterD
- Re: BYPASS privilege !!
  - From: JF Mezei

References:
- BYPASS privilege !!
  - From: BaxterD
- Re: BYPASS privilege !!
  - From: JF Mezei

Prev by Date: Re: Lightning & Time to buy lottery tickets
Next by Date: RE: Another opportunity
Previous by thread: Re: BYPASS privilege !!
Next by thread: Re: BYPASS privilege !!
Index(es):
- Date
- Thread

Relevant Pages

Re: BYPASS privilege !!
... > need to trust at least one system manager who could still wreak havok on ... So you can set secondary passwords... ...
(comp.os.vms)
Re: BYPASS privilege !!
... but there is a secondary password that can be required to log in to an account; IOW two passwords, only one of which is known to the system manager. ... Consider an emergency where the system manager is at work, but the second person is at home or on a business trip. ... In fact, what might be interesting to do is a program which backs-up SYSUAF and RIGHTLIST on a daily basis, and compares that day's SYSUAF with the previous day's backup and then corroborates every chantge against the audit log to detect if any differences were made that were not logged and ring alarm bells when it finds some unaudited changes. ...
(comp.os.vms)
Re: BYPASS privilege !!
... In the end, isn't it still true that for a functional system, you still need to trust at least one system manager who could still wreak havok on your system if he truly wanted to? ... (And when, as is often the case, the system manager is the only one in the company who really knows VMS, those security folks who monitor the system manager would have no clue on what he is really doing. ...
(comp.os.vms)
Re: how to implement an append only log file?
... > have real append-only files in an OS? ... It isn't possible because if the user has enough privilege they ... systems have earned that level of trust. ... and trust the system manager not to mess with the software ...
(comp.os.vms)
Re: how to implement an append only log file?
... JF Mezei writes: ... you have to trust your system manager. ... So it is with all security measures, ... you have to trust somebody. ...
(comp.os.vms)