Security Basics mailing list archives

Re: Re: program to store passwords

From: cryptic () yahoo com
Date: 29 Jun 2005 04:24:46 -0000

Just because you are a system administrator does not mean that you should have knowledge of every password in an 
environment you administer. The key to password management is crucial in any environment. An administrator should have 
all the capabilities to effectively manage passwords and credentials without having knowledge of actual passwords or 
credentials. 

Using an algorithm which does not introduce entropy when a password is generated is obfuscation at best, so using a 
home grown algorithm will not work. Look into using identity management, and implement/develop something similar by 
yourself using your cerebrum cortex, which will effectively address your environment.

Current thread:

Re: program to store passwords, (continued)
- - Re: program to store passwords Greg Stiavetti (Jun 30)
- Re: program to store passwords thewanderer (Jun 28)
- Re: program to store passwords webninja (Jun 28)
- Re: program to store passwords Leon North (Jun 28)
  - Re: program to store passwords Jeremy Chapman (Jun 29)
- Re: program to store passwords andre (Jun 28)
- Re: program to store passwords techpsi (Jun 28)
  - Re: program to store passwords Raoul Armfield (Jun 30)
- RE: program to store passwords Nick Duda (Jun 29)
- RE: program to store passwords Chad Maniccia (Jun 29)
- Re: Re: program to store passwords cryptic (Jun 29)