Home page logo

nanog logo nanog mailing list archives

Re: Password Security and Distribution
From: Andy Davidson <andy () nosignal org>
Date: Thu, 9 Feb 2006 12:59:10 +0000


Embarassingly late reply; I've been away.

On Tue, Jan 24, 2006 at 10:48:45AM -0500, Jeremy Stinson wrote:
We are in the need for a better mechanism for sharing passwords between our 
engineers. Most of these passwords are for our client's systems where some 
of them are controlling the password schemes (aka requiring shared user 
In other companies we have used a PGP keyring to secure a text file that 
contained all of these passwords and then put them onto a shared customer 
portal. The problem with this strategy is what happens if you are not 
on your computer where PGP is installed?

Encrypted text files are a nice way to go until you grow to the size
when people need very different levels of access, and centrally storing
a number of these files isn't good enough.

http://devel.pluto.linux.it/projects/Gringotts/ is what we use.  If an
engineer is not at a desk where they have gringotts installed, use the
-d flag to use a console/interactive version of the software instead of
the usual GTK gubbins.


  By Date           By Thread  

Current thread:
  • Re: Password Security and Distribution Andy Davidson (Feb 09)
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]