Educause Security Discussion mailing list archives

Previous By Date Next
Previous By Thread Next

Re: Windows Domain Controllers: Risks involved

From: Patrick P Murphy <pmurphy () NRAO EDU>
Date: Fri, 13 Mar 2009 11:17:08 -0400
On Fri, 13 Mar 2009 08:40:56 -0400, "F.M. Taylor" <fmtaylor () PURDUE EDU>
   said:


On Friday 13 March 2009, Marmina Abdel Malek formed electrons in this
pattern:



- Domain admins can access the files of any computer in the
domain. How do you ensure the confidentiality and privacy of users
and data?



Most Admins don't have the time or inclination to to go through the
users files, as when they first discovered they could do this they
also discovered that the users are boring.  Also there are ethical
(and in some cases legal) standards that any admin worth getting paid
should uphold.


Most will know this, but for anyone who doesn't, SAGE (the System Admin
Guild, part of USENIX) has a Code of Ethics for administrators here:

                      http://www.sage.org/ethics/

 - Pat

--
 Patrick P. Murphy, Ph.D.   Webmaster (East), Computing Security Manager
 http://www.nrao.edu/~pmurphy/          http://chien-noir.com/maze.shtml
 "Inventions then cannot, in nature, be a subject of property."
                                    -- Thomas Jefferson, August 13, 1813
Previous By Date Next
Previous By Thread Next

Current thread: