[brlug-general] Email passwords are.. special?
Dustin Puryear
dustin at puryear-it.com
Thu Feb 15 11:01:22 CST 2007
Agreed. How often do people tie their VPN into, for example, AD or
LDAP? And how many people tie their email credentials to, for example,
AD or LDAP? So if I get your email credentials from your lost
cellphone or PDA, then I have your VPN credentials..
This really has nothing to do with admins.
---
Puryear Information Technology, LLC
Baton Rouge, LA * 225-706-8414
http://www.puryear-it.com
Author:
"Best Practices for Managing Linux and UNIX Servers"
"Spam Fighting and Email Security in the 21st Century"
Download your free copies:
http://www.puryear-it.com/publications.htm
Wednesday, February 14, 2007, 6:40:32 PM, you wrote:
> The admin isn't the only user that has valuable information. I don't
> think we are talking only about network security, but data security as well.
> --mat
> Kevin Kreamer wrote:
>> Dustin Puryear wrote:
>>
>>> What are your thoughts on whether email accounts should be separate
>>> from normal network accounts? Pros? Cons? Should companies just not
>>> allow external access to email via POP or IMAP and just require
>>> Webmail access so users have to manually enter passwords? Does that
>>> solve the real problem? I'm interested in hearing what everyone has to
>>> say.
>>>
>>
>> I'm going to add here the opinion that if your network security relies
>> on the security of non-admin user passwords, you've already got
>> problems. Likewise if your admins pick insecure passwords or write them
>> down in sticky notes.
>>
>> Kevin
>>
>>
>> _______________________________________________
>> General mailing list
>> General at brlug.net
>> http://mail.brlug.net/mailman/listinfo/general_brlug.net
>>
>>
> _______________________________________________
> General mailing list
> General at brlug.net
> http://mail.brlug.net/mailman/listinfo/general_brlug.net
More information about the General
mailing list