[ale] [OT] Good Server Documentation - Best Practices
Joe
jknapka at earthlink.net
Thu Jan 30 11:40:11 EST 2003
"James P. Kinney III" <jkinney at localnetsolutions.com> writes:
> Yeah, but if the only person with the root password gets hit by a bus...
>
> At Emory, we had an envelope that was sealed that contained root and
> admin passwords. But the paper inside had "match the machine to the
> password" diagram. Machines on the left, big space, passwords on the
> right. Then there were hand drawn line to connect the two. The passwords
> were not in order as the machines. Then we tore the paper in half
> lengthwise. one half went in a separate envelope. The halves were stored
> in separate locations.
I must say, that seems a bit extreme, given that anyone with physical
access to the machines could, in a pinch, re-password root to whatever
she wants. If it were me, I would not write down the root passwords
*anywhere*; I'd just put a note in some obscure place that "If you
need to change the root password, boot using Toms and vipw away."
Not sure that would be possble on NT, though. Come to think of it,
is there any way at all to recover from admin password lossage on
NT?
Cheers,
-- Joe Knapka
_______________________________________________
Ale mailing list
Ale at ale.org
http://www.ale.org/mailman/listinfo/ale
More information about the Ale
mailing list