Penetration Testing mailing list archives
Re: Handling Sysads resignation/termination
From: spyteknow007 () netscape net
Date: Thu, 04 Aug 2005 07:53:38 -0400
Asking a systems adminstrator to certify that he has not installed any time bombs on a system is unreasonable, as Microsoft has stated in court that IE is a key component of the MS operating system. In jest I am making the point. Systems Administrators are often not responsible for the selection of software that is installed on the company servers. Those types of decisions are often made by management. The administrator is simply responsible for implimenting and facilitating the continued operation of such software and services. The administrator cannot certify that a product has not come with a "trojan" already installed, and for the most part, may be completely unaware of any penetrations of the existing network. As a Sys Admin, I would never sign such a document. I already have the threat of the law looming over me, to agree to be accountable for any additional mishaps, makes an admin a scape goat for incompetent decisions made by his superiors during his tenure as an employee for that company. Unscrupulous companies are just as common as unscrupulous employees.
I've been working as a security consultant for a financial company.
a system administrator handling the several of the critical servers will be retiring. before he leave the
company the management wants me to interview him and in "certify" that he did not leave any timebombs, malicious programs on the pcs.
Since i have no experience in handling pre-termination of a systems administrator, i would appreciate you insights and suggestions on how to go about this.
Questions that needs to be asked. Steps to take to ensure that the systems are clean after his resignation.
Thanks and God bless!
__________________________________________________ Do You Yahoo!? Tired of spam? Yahoo! Mail has the best spam protection around http://mail.yahoo.com ------------------------------------------------------------------------------ FREE WHITE PAPER - Wireless LAN Security: What Hackers Know That You Don't Learn the hacker's secrets that compromise wireless LANs. Secure your WLAN by understanding these threats, available hacking tools and proven countermeasures. Defend your WLAN against man-in-the-Middle attacks and session hijacking, denial-of-service, rogue access points, identity thefts and MAC spoofing. Request your complimentary white paper at: http://www.securityfocus.com/sponsor/AirDefense_pen-test_050801 ------------------------------------------------------------------------------- __________________________________________________________________ Switch to Netscape Internet Service. As low as $9.95 a month -- Sign up today at http://isp.netscape.com/register Netscape. Just the Net You Need. New! Netscape Toolbar for Internet Explorer Search from anywhere on the Web and block those annoying pop-ups. Download now at http://channels.netscape.com/ns/search/install.jsp ------------------------------------------------------------------------------ FREE WHITE PAPER - Wireless LAN Security: What Hackers Know That You Don't Learn the hacker's secrets that compromise wireless LANs. Secure your WLAN by understanding these threats, available hacking tools and proven countermeasures. Defend your WLAN against man-in-the-Middle attacks and session hijacking, denial-of-service, rogue access points, identity thefts and MAC spoofing. Request your complimentary white paper at: http://www.securityfocus.com/sponsor/AirDefense_pen-test_050801 -------------------------------------------------------------------------------
Current thread:
- Re: Handling Sysads resignation/termination, (continued)
- Re: Handling Sysads resignation/termination Thor (Hammer of God) (Aug 04)
- Re: Handling Sysads resignation/termination Michael Hammer (Aug 04)
- RE: Handling Sysads resignation/termination Erin Carroll (Aug 04)
- RE: Handling Sysads resignation/termination Michael Starr (Aug 03)
- RE: Handling Sysads resignation/termination Solomon (Aug 03)
- RE: Handling Sysads resignation/termination Irvin Temp (Aug 04)
- Message not available
- RE: Handling Sysads resignation/termination Mark Teicher (Aug 04)
- Re: Handling Sysads resignation/termination Irvin Temp (Aug 04)