HP3000-L Archives

July 2005, Week 3

HP3000-L@RAVEN.UTC.EDU
Options: Use Monospaced Font
Show Text Part by Default
Show All Mail Headers

Message: [<< First] [< Prev] [Next >] [Last >>]
Topic: [<< First] [< Prev] [Next >] [Last >>]
Author: [<< First] [< Prev] [Next >] [Last >>]

Print Reply
Subject:
Re: Date of creation of an MPE user
From:
"Johnson, Tracy" <[log in to unmask]>
Reply To:
Johnson, Tracy
Date:
Fri, 15 Jul 2005 15:08:44 -0400
Content-Type:
text/plain
Parts/Attachments:
text/plain (165 lines) 
The idea of a birth certificate is not too far off the mark.

You're going to need a piece of paper authorizing access as of a certain
date anyway.  We generated a whole slew of access papers (with a common
starting date and signatures) upon SOX implementation and have been
adding to the file ever since.  This includes a list of exceptions for
super users like "MANAGER.SYS".

You might as well fall back on that.  There is no requirement that the
user-creation-date be machine generated (at least not that I'm aware
of.)

If the user exists "on paper" but the user does not exist on the system
then obviously, the request was "denied" or not processed.  That should
pass an audit.  (You could add an out-of-state phone book as an example
other users not on the system.)

If the "on paper" user also exists on the system, then all is well.

If the user exists on the system but the "paper" user does not, "then"
you have cause for shame.

Tracy Johnson
Measurement Specialties, Inc. 

BT







NNNN


> -----Original Message-----
> From: HP-3000 Systems Discussion 
> [mailto:[log in to unmask]] On Behalf Of Art Bahrs
> Sent: Friday, July 15, 2005 2:37 PM
> To: [log in to unmask]
> Subject: Re: [HP3000-L] Date of creation of an MPE user
> 
> 
> Hi All :)
>     This seems to be a question from an auditor.... ie "I 
> need to sample 25 of hte users you created accounts (ie 
> System Accesses) for this year"  ...
> 
>      The best answer for this is to refer to the logs/System 
> Access Requests that are submited when your users ask for 
> accounts and go from there ... :) If not ... looked like 
> either Alfredo or Wirt's answers are
> definitely going to get you the answer :) hehehe   Tho' 
> note.... that the
> hospital records are not necessarily accurate for the early 
> '60's for the State of Oregon...  :) take that from personal 
> experience from fililng for a 'Eyes Only' Security clearance 
> and background check :)
> 
> Art "Gonna discuss this in Presentation #5033 at HP World :) " Bahrs
> 
> =======================================================
> Art Bahrs, CISSP           Information Security          The 
> Regence Group
> (503) 225-4992              FAX (503) 220-3806
> 
> 
> 
>                 "Paul H
>                 Christidis"
>                 <pchristidis@c                                
>           To
>                 sc.com>                [log in to unmask]
>                 Sent by:                                      
>           cc
>                 "HP-3000
>                 Systems                                       
>      Subject
>                 Discussion"            Re: [HP3000-L] Date of 
> creation of
>                 <HP3000-L@RAVE         an MPE user
>                 N.UTC.EDU>
> 
> 
>                 07/13/2005
>                 10:34 AM
> 
> 
>                 Please respond
>                       to
>                    "Paul H
>                  Christidis"
>                 <pchristidis@c
>                    sc.com>
>                 |------------|
>                 | [ ] Secure |
>                 |     E-mail |
>                 |------------|
> 
> 
> 
> 
> 
> If at your site you happen to have a policy that each user is 
> also provided with a home group of their own, then you could 
> deduce their creation date indirectly by looking at the 
> creation date of their corresponding group.  The other 
> indirect method would require having access to the system log 
> files for the entire year and parsing out the "newuser" commands.
> 
> Regards
> Paul Christidis
> 
> 
> --------------------------------------------------------------
> --------------------------
> 
> This is a PRIVATE message. If you are not the intended 
> recipient, please delete without copying and kindly advise us 
> by e-mail of the mistake in delivery. NOTE: Regardless of 
> content, this e-mail shall not operate to bind CSC to any 
> order or other contract unless pursuant to explicit written 
> agreement or government initiative expressly permitting the 
> use of e-mail for such purpose.
> --------------------------------------------------------------
> --------------------------
> 
> 
> 
> 
> 
> I need a list of all the users that were created this year. 
> How can I get this list?
> 
> * To join/leave the list, search archives, change list settings, *
> * etc., please visit http://raven.utc.edu/archives/hp3000-l.html *
> 
> * To join/leave the list, search archives, change list settings, *
> * etc., please visit http://raven.utc.edu/archives/hp3000-l.html *
> 
> 
> 
> 
> ==============================================================
> ================
> IMPORTANT NOTICE: This communication, including any 
> attachment, contains information that may be confidential or 
> privileged, and is intended solely for the entity or 
> individual to whom it is addressed.  If you are not the 
> intended recipient, you should delete this message and are 
> hereby notified that any disclosure, copying, or distribution 
> of this message is strictly prohibited.  Nothing in this 
> email, including any attachment, is intended to be a legally 
> binding signature. 
> ==============================================================
> ================
> 
> * To join/leave the list, search archives, change list settings, *
> * etc., please visit http://raven.utc.edu/archives/hp3000-l.html *
> 

* To join/leave the list, search archives, change list settings, *
* etc., please visit http://raven.utc.edu/archives/hp3000-l.html *

ATOM RSS1 RSS2