ADSM-L

Re: security

2000-05-08 03:07:56
Subject: Re: security
From: Reinhard Mersch <mersch AT UNI-MUENSTER DOT DE>
Date: Mon, 8 May 2000 09:07:56 +0200
Bill Colwell writes:
 > If 'passwordaccess generate' is used and the node is defined with
 > 'forcepw=yes', when the first connection is made and the initial password
 > is entered, a new password is generated.  This password is unknown to
 > everyone including the user and all administrators.  I know the dsmcutil
 > program can display it, but if physical security to the user machine is
 > maintained these parameters provide decent security for the adsm backups.
 >
 > An administrator would need to reset the password to give
 > others access and this leaves an
 > audit trail plus the user may notice that his client doesn't work anymore.

An administrator could export the data, import it to a separate *SM server
and access the data from there. Nobody would notice.

--
Reinhard Mersch                        Westfaelische Wilhelms-Universitaet
Reinhard Mersch                        Westfaelische Wilhelms-Universitaet
Zentrum fuer Informationsverarbeitung - ehemals Universitaetsrechenzentrum
Roentgenstrasse 9-13, D-48149 Muenster, Germany      Tel: +49(251)83-31583
E-Mail: mersch AT uni-muenster DOT de                       Fax: 
+49(251)83-31653
<Prev in Thread] Current Thread [Next in Thread>