Security Basics mailing list archives
RE: Password storage tool?
From: Meidinger Chris <chris.meidinger () badenit de>
Date: Thu, 21 Aug 2003 09:08:07 +0100
most organizations have one responsible person with one offline password store like a palm. this can then be transferred to the second in command when that guy is away. Disadvantage: waking the guy up at 4 am Advantage: people are hard to hack. the guy might be susceptible to social engineering, but the idea of an online password store makes me cringe some people do it with sealed envelopes, and go get the right envelope when it is needed badenIT GmbH System Support Chris Meidinger Tullastrasse 70 79108 Freiburg -----Original Message----- From: john () tpna com [mailto:john () tpna com] Sent: Wednesday, August 20, 2003 8:53 PM To: security-basics () securityfocus com Subject: Password storage tool? Hi All: Looking for a utility that we can use enterprise-wide to self-service passwords. Things like service accounts, Domain Registrar accounts, etc... Right now we do the manual information to an envelope that gets stored in a safe. I realize that storing this info on the network is usually a Bad Thing(tm), but if we can securely encrypt it, it makes it a lot easier for people to get the info in the time of need (without the gatekeeper having to drive into the office at 4am). Looking for real-world stories, ideas, what didn't work, etc... -john "MMS <takedapharm.com>" made the following annotations. ---------------------------------------------------------------------------- -- This message is for the designated recipient only and may contain privileged or confidential information. If you have received it in error, please notify the sender immediately and delete the original. Any other use of the email by you is prohibited. ============================================================================ == --------------------------------------------------------------------------- ---------------------------------------------------------------------------- --------------------------------------------------------------------------- ----------------------------------------------------------------------------
Current thread:
- Password storage tool? john (Aug 20)
- Re: Password storage tool? Simon Gray (Aug 21)
- Re: Password storage tool? senrong (Aug 21)
- <Possible follow-ups>
- RE: Password storage tool? McGill, Lachlan (Aug 21)
- SoBig and some info Kevin Saenz (Aug 21)
- Re: SoBig and some info Sebastian Schneider (Aug 22)
- SoBig and some info Kevin Saenz (Aug 21)
- RE: Password storage tool? Meidinger Chris (Aug 21)
- RE: Password storage tool? Tim Donahue (Aug 21)
- RE: Password storage tool? Chris Merkel (Aug 21)
- RE: Password storage tool? Jennifer Fountain (Aug 21)
- RE: Password storage tool? Chris Berry (Aug 22)