The UNIX and Linux Forums  

Go Back   The UNIX and Linux Forums > The Lounge > What's on Your Mind?
Reload this Page Root User Management
.
google unix.com

Forums Register Forum RulesLinksAlbums FAQ Members List Calendar Search Today's Posts Mark Forums Read



Thread: Root User Management
View Single Post in the UNIX and Linux Forums - Click on the Thread or Permalink to View Entire Thread -->
  #6 (permalink)  
Old 01-14-2006
kduffin's Avatar
kduffin kduffin is offline Forum Advisor  
UN1X
  
 

Join Date: Nov 2003
Location: Maryland
Posts: 449
Perderabo,

The job before my current one was the security ideal. Anything that resided in the DMZ or next zone down was Trusted Solaris. The root account was a "role", not a user - thus no direct login from anywhere. RBAC ruled the day and had been extended to provide what sudo could and more. No access that was unencrypted was allowed. All other layers - app, transport, customer and database, thought not TS were setup in a similar fashion. Extensive auditing existed and maintained audit logs local and a a remote location so you could checksum to ensure that the audit trail was unaltered.

Security was tight, but organized well enough to never be an impediment to business.

Cheers,

Keith