Security Basics mailing list archives

Re: Re: Tracking down anonymous user

From: tima.soni () gmail com
Date: 29 Dec 2006 21:37:25 -0000

Hi Mike,

You may try to add another layer of authentication where in a user supplies his/ her credentials before accessing any 
shared resource. We have this implemented in our environment...

Passwords should never be shared. So you should also work on defining and implementing a policy where in you can 
question the accountability of any user using any account. Every user accessing any asset with in your organization 
should have his/ her own unique user ID. 

Regards

Tima

Current thread:

RE: Tracking down anonymous user Murda Mcloud (Jan 02)
- <Possible follow-ups>
- Re: Re: Tracking down anonymous user levinson_k (Jan 02)
- Re: Re: Tracking down anonymous user tima . soni (Jan 02)
- Re: Tracking down anonymous user Dani Houpt (Jan 02)
- RE: Tracking down anonymous user David A. Coursey (Jan 02)
- Re: Tracking down anonymous user Mat Benwell (Jan 02)
- Re: RE: Tracking down anonymous user christopherkelley (Jan 02)
- Re: RE: Tracking down anonymous user christopherkelley (Jan 02)
- RE: Tracking down anonymous user Scott Ramsdell (Jan 02)
- Re: Tracking down anonymous user killy (Jan 02)
  - RE: Tracking down anonymous user Tom Geairn (Jan 02)
- Re: Re: Tracking down anonymous user mikef (Jan 02)
- RE: Tracking down anonymous user Gressick, Michael (Jan 02)

(Thread continues...)