Educause Security Discussion mailing list archives

Previous By Date Next
Previous By Thread Next

Re: Server naming conventions

From: "Perloff, Jim" <perloffj () UCHASTINGS EDU>
Date: Wed, 10 Feb 2010 16:26:09 -0800
A question for Bob-
Is the machine named 'payroll' actually more attractive to the bad guys?
I think everybody worries about that and that is one reason we use
fanciful names.
Jim

_________________________________________________
Call the HelpDesk at x8802 with your computer problems
 or questions, or email us at helpdesk () uchastings edu

Jim Perloff
Network Administrator
UC Hastings College of the Law
200 McAllister Street
San Francisco, CA  94102
415.565.4712
http://uchastings.edu/infotech/index.html

-----Original Message-----
From: The EDUCAUSE Security Constituent Group Listserv
[mailto:SECURITY () LISTSERV EDUCAUSE EDU] On Behalf Of Bob Bayn
Sent: Wednesday, February 10, 2010 3:04 PM
To: SECURITY () LISTSERV EDUCAUSE EDU
Subject: Re: [SECURITY] Server naming conventions

Woodruff, Daniel wrote:

What kinds of naming conventions do everyone follow when building new
servers?  ...


We're fond of names based on nonsense, fantasy and private jokes.
Except our subnet .6. which is a honeypot darknet with names like
payroll, records, accounting, cashier, finaid, controller, grants,
studentrecords, etc.

On the other hand, some of our user services have hostnames that match
their function.  Users believe that a password management utility should
be at password.usu.edu, not at eureka.ext.usu.edu (but a nslookup of the
IP address returns the latter hostname, not the alias hostname).

________________________________________
Bob Bayn        (435)797-2396      Security Team coordinator
  Don't let hackers use your computer when you aren't.
  Turn off your computer at the end of your work day.
Office of Information Technology   at  Utah State University
Previous By Date Next
Previous By Thread Next

Current thread: