How Big Is The Risk ????

T

tsmnovice

ADSM.ORG Member
Joined
Jul 18, 2005
Messages
42
Reaction score
0
Points
0
I started working for this company and was shocked to see that the TSM server

on AIX platform has the password as 'admin' for the TSM ' admin' userid. They have not

changed it in the last 5 years since TSM was first installed. How big of a security risk is

it ? It doesnt look like the Auditors even noticed it in the last 5 years .

Is this a safe practice leaving the password for 'admin' userid as 'admin' ?? If some hacker

notices this within the comapny, what kind of a risk are we looking at ??

Thanks in advance for thoughtful responses !!!
 
Hi,



well, it depends on how easily is the TSM accessible - if the Web Interface or command line tool can connect from any IP within the company, then anyone guessing the password (trying default) has complete control over the TSM. So he/she can delete any filespace, mess with your retention settings, RESTORE ANY CONFIDENTAL DATA ... it is definetely not a good thing ...

If the web interface is disabled (or firewalled) and the administration commandline tool is set to another port (using tcpadminport in dsmserv.opt on the server) and firewalled to allow access only from trusted (administrator's) IP then it can be safe ....



But generally I would consider it as a serious risk ... and it takes 10 seconds to change the password :)



Hope it helps



Harry
 
I'm in agreement with Harry - upon installation and the registration of the first admin with system level privileges, the default admin and client accounts should be disabled and/or locked. Consider admin account - root for TSM - once you're in, your're in and all that data is just a glowing.

As a previous Sec Admin, in one of my last positions, an auditor knows which application default accounts to disable and which ones need to remain open.

Again, level of risk, - ask yourself this question. If it was your data and you considered it confidential no matter how trivial and you do not want outsiders looking in - you'd take the actions to prevent it wouldn't you. Consider your employer your data and present this risk assessment to anyone who argues with you.



Good luck

Steven
 
You must log in or register to reply here.

Data Privacy Impact Assessment

Compliance Assurance in Every Byte: Discover the Impact of Our DPIA Services.

Sponsor ADSM.ORG

If you are reading this, so are your potential customer. Advertise at ADSM.ORG right now.

Navigation Menu

Forums
   IBM TSM
   EMC Backup and Recovery
   Symantec NetBackup  
   SAN  
   NAS
   Platforms / OS
Mailing List Archives
   ADSM-L
User Groups

NordVPN 3 Months FREE

Help Support ADSM.ORG and Get NordVPN with 64% Off and 3 Months FREE.

NordVPN with 64% off + 3 months FREE

Forum statistics

Threads
31,971
Messages
135,441
Members
21,949
Latest member
tsheli
Back
Top