Educause Security Discussion mailing list archives

Previous By Date Next
Previous By Thread Next

Re: Peeling off desktop Administrator Rights

From: "Flynn, Gerald" <flynngn () JMU EDU>
Date: Mon, 7 Dec 2009 16:00:21 -0500
Most of today's security issues ARE management issues.


-----Original Message-----
From: The EDUCAUSE Security Constituent Group Listserv
[mailto:SECURITY () LISTSERV EDUCAUSE EDU] On Behalf Of randy marchany
Sent: Monday, December 07, 2009 3:09 PM
To: SECURITY () LISTSERV EDUCAUSE EDU
Subject: Re: [SECURITY] Peeling off desktop Administrator Rights

On Mon, Dec 7, 2009 at 2:25 PM, Eric Case <ecase () email arizona edu>
wrote:

Great points Randy,

What you propose only has one flaw, enforcing that users are

responsible.
---------------------------------
From our Acceptable Use Standard:

You are responsible for all activities on your userid or that
originate from your system.
In making acceptable use of resources you must:
 -use only legal versions of copyrighted software in compliance with
vendor license requirements.
----------------------------------

Easy for us to enforce. I think you mean "would we be WILLING to
enforce this?".  If the action causes disruption of service, data
access, etc., it seems everyone would be willing to enforce it.

That's a mgt issue not a security issue.

-Randy
Previous By Date Next
Previous By Thread Next

Current thread: