[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: [cobalt-users] Qube3 - Disable Password Reset
- Subject: Re: [cobalt-users] Qube3 - Disable Password Reset
- From: Gerald Waugh <gwaugh@xxxxxxxxxxxxxxxxxxxxxxx>
- Date: Wed Jun 19 10:21:06 2002
- Organization: Front Street Networks LLC
- List-id: Mailing list for users to share thoughts on Sun Cobalt products. <cobalt-users.list.cobalt.com>
On Wednesday 19 June 2002 12:44 pm, Jolley, Carl wrote:
> Physical security is obviously an important factor in any security plan.
>
> The situation is that the admin password will be set, documented and locked
> in a safe. Management functions will be allocated to different user
> account. Normal IT management staff will not have knowledge of the admin
> password. What they want to avoid is some disgruntled user simply
> resetting the password change things and then leave the organisation.
"Physical security is obviously an important factor in any security plan"
Without serious modifications there is no way to protect the RaQ, or any
server from someone who has access to the server.
All he needs to do is take his notebook, fireup minicom connect to the
servers serial (console port) and reboot the server, or even turn it off and
back on if he can't reboot, any other way.
Physical security is obviously a *VERY* important factor in any security plan
--
Gerald Waugh
http://frontstreetnetworks.com SOHO Networks & Web Site Hosting
Front Street Networks LLC voice +1 203 785 0699 * fax +1 203 785 1787
229 Front Street, Ste. #C, New Haven CT 06513-3203