Subject: | |
From: | |
Reply To: | Bartram, Chris (Contractor) |
Date: | Tue, 18 Jan 2005 15:43:26 -0500 |
Content-Type: | text/plain |
Parts/Attachments: |
|
|
donna garverick <mailto:[log in to unmask]> wrote:
> --- "Newton, Ernie" <[log in to unmask]> wrote:
>
>> Greetings,
>> Vladimir visited us last week and again raked me
>> over the coals for inadequate securities. It's an
>> annual occurrence.
>
> just say no :-)
>
>> That being said, there are things I need to do. I found
>> some logons without passwords and am curious about any
>> ramifications there may be if I put an account password
>> there. These seem to be "system" accounts that include;
>> APACHE, JAVA, HPPL89, etc.
I run jobs every 24 hours on all my systems that put random account, user,
and group passwords on all these "system" accounts; in fact ANY
account/user/group that isn't used on a regular basis by real users. (using
contributed rndpass program on www.3k.com )
Just make sure that any startup jobs/ sysstart etc utilize the :JOBSECURITY
settings, or you use a utility that negates the need for imbedded passwords
in job streams.
-Chris Bartram
* To join/leave the list, search archives, change list settings, *
* etc., please visit http://raven.utc.edu/archives/hp3000-l.html *
|
|
|