Educause Security Discussion mailing list archives
Re: Windows Domain Controllers: Risks involved
From: Patrick P Murphy <pmurphy () NRAO EDU>
Date: Fri, 13 Mar 2009 11:17:08 -0400
On Fri, 13 Mar 2009 08:40:56 -0400, "F.M. Taylor" <fmtaylor () PURDUE EDU> said:
On Friday 13 March 2009, Marmina Abdel Malek formed electrons in this pattern:
- Domain admins can access the files of any computer in the domain. How do you ensure the confidentiality and privacy of users and data?
Most Admins don't have the time or inclination to to go through the users files, as when they first discovered they could do this they also discovered that the users are boring. Also there are ethical (and in some cases legal) standards that any admin worth getting paid should uphold.
Most will know this, but for anyone who doesn't, SAGE (the System Admin Guild, part of USENIX) has a Code of Ethics for administrators here: http://www.sage.org/ethics/ - Pat -- Patrick P. Murphy, Ph.D. Webmaster (East), Computing Security Manager http://www.nrao.edu/~pmurphy/ http://chien-noir.com/maze.shtml "Inventions then cannot, in nature, be a subject of property." -- Thomas Jefferson, August 13, 1813
Current thread:
- Windows Domain Controllers: Risks involved Marmina Abdel Malek (Mar 13)
- <Possible follow-ups>
- Re: Windows Domain Controllers: Risks involved Tupker, Mike (Mar 13)
- Re: Windows Domain Controllers: Risks involved F.M. Taylor (Mar 13)
- Re: Windows Domain Controllers: Risks involved John Kaftan (Mar 13)
- Re: Windows Domain Controllers: Risks involved Patrick P Murphy (Mar 13)
- Re: Windows Domain Controllers: Risks involved Miller, Don C. (Mar 13)
- Re: Windows Domain Controllers: Risks involved Miller, Don C. (Mar 13)
- Re: Windows Domain Controllers: Risks involved Chris Green (Mar 13)
- Re: Windows Domain Controllers: Risks involved Anand S Malwade (Mar 13)
- Re: Windows Domain Controllers: Risks involved Brian Desmond (Mar 13)
- Re: Windows Domain Controllers: Risks involved Brian Desmond (Mar 13)
- Re: Windows Domain Controllers: Risks involved Jason Testart (Mar 13)
- Re: Windows Domain Controllers: Risks involved Brian Desmond (Mar 13)
- Re: Windows Domain Controllers: Risks involved Marmina Abdel Malek (Mar 13)
- Re: Windows Domain Controllers: Risks involved Brian Desmond (Mar 13)
(Thread continues...)