Home page logo
/

basics logo Security Basics mailing list archives

Re: Re: program to store passwords
From: cryptic () yahoo com
Date: 29 Jun 2005 04:24:46 -0000

Just because you are a system administrator does not mean that you should have knowledge of every password in an 
environment you administer. The key to password management is crucial in any environment. An administrator should have 
all the capabilities to effectively manage passwords and credentials without having knowledge of actual passwords or 
credentials. 

Using an algorithm which does not introduce entropy when a password is generated is obfuscation at best, so using a 
home grown algorithm will not work. Look into using identity management, and implement/develop something similar by 
yourself using your cerebrum cortex, which will effectively address your environment.


  By Date           By Thread  

Current thread:
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]