Re: security
2000-05-08 03:07:56
Bill Colwell writes:
> If 'passwordaccess generate' is used and the node is defined with
> 'forcepw=yes', when the first connection is made and the initial password
> is entered, a new password is generated. This password is unknown to
> everyone including the user and all administrators. I know the dsmcutil
> program can display it, but if physical security to the user machine is
> maintained these parameters provide decent security for the adsm backups.
>
> An administrator would need to reset the password to give
> others access and this leaves an
> audit trail plus the user may notice that his client doesn't work anymore.
An administrator could export the data, import it to a separate *SM server
and access the data from there. Nobody would notice.
--
Reinhard Mersch Westfaelische Wilhelms-Universitaet
Reinhard Mersch Westfaelische Wilhelms-Universitaet
Zentrum fuer Informationsverarbeitung - ehemals Universitaetsrechenzentrum
Roentgenstrasse 9-13, D-48149 Muenster, Germany Tel: +49(251)83-31583
E-Mail: mersch AT uni-muenster DOT de Fax:
+49(251)83-31653
|
|
|