|
Penetration Testing
mailing list archives
Re: Handling Sysads resignation/termination
From: spyteknow007 () netscape net
Date: Thu, 04 Aug 2005 07:53:38 -0400
Asking a systems adminstrator to certify that he has not installed any time bombs on a system is unreasonable, as
Microsoft has stated in court that IE is a key component of the MS operating system.
In jest I am making the point. Systems Administrators are often not responsible for the selection of software that is
installed on the company servers. Those types of decisions are often made by management. The administrator is simply
responsible for implimenting and facilitating the continued operation of such software and services. The administrator
cannot certify that a product has not come with a "trojan" already installed, and for the most part, may be completely
unaware of any penetrations of the existing network.
As a Sys Admin, I would never sign such a document. I already have the threat of the law looming over me, to agree to
be accountable for any additional mishaps, makes an admin a scape goat for incompetent decisions made by his superiors
during his tenure as an employee for that company. Unscrupulous companies are just as common as unscrupulous employees.
I've been working as a security consultant for a
financial company.
a system administrator handling the several of the
critical servers will be retiring. before he leave the
company the management wants me to interview him and
in
"certify" that he did not leave any timebombs,
malicious
programs on the pcs.
Since i have no experience in handling pre-termination
of
a systems administrator, i would appreciate you
insights
and suggestions on how to go about this.
Questions that needs to be asked. Steps to take to
ensure that the systems are clean after his
resignation.
Thanks and God bless!
__________________________________________________
Do You Yahoo!?
Tired of spam? Yahoo! Mail has the best spam protection around
http://mail.yahoo.com
------------------------------------------------------------------------------
FREE WHITE PAPER - Wireless LAN Security: What Hackers Know That You Don't
Learn the hacker's secrets that compromise wireless LANs. Secure your
WLAN by understanding these threats, available hacking tools and proven
countermeasures. Defend your WLAN against man-in-the-Middle attacks and
session hijacking, denial-of-service, rogue access points, identity
thefts and MAC spoofing. Request your complimentary white paper at:
http://www.securityfocus.com/sponsor/AirDefense_pen-test_050801
-------------------------------------------------------------------------------
__________________________________________________________________
Switch to Netscape Internet Service.
As low as $9.95 a month -- Sign up today at http://isp.netscape.com/register
Netscape. Just the Net You Need.
New! Netscape Toolbar for Internet Explorer
Search from anywhere on the Web and block those annoying pop-ups.
Download now at http://channels.netscape.com/ns/search/install.jsp
------------------------------------------------------------------------------
FREE WHITE PAPER - Wireless LAN Security: What Hackers Know That You Don't
Learn the hacker's secrets that compromise wireless LANs. Secure your
WLAN by understanding these threats, available hacking tools and proven
countermeasures. Defend your WLAN against man-in-the-Middle attacks and
session hijacking, denial-of-service, rogue access points, identity
thefts and MAC spoofing. Request your complimentary white paper at:
http://www.securityfocus.com/sponsor/AirDefense_pen-test_050801
-------------------------------------------------------------------------------
 By Date 
By Thread
Current thread:
- RE: Handling Sysads resignation/termination, (continued)
Re: Handling Sysads resignation/termination Irvin Temp (Aug 04)
Re: Handling Sysads resignation/termination intel96 (Aug 03)
Re: Handling Sysads resignation/termination Michael Sierchio (Aug 04)
Re: Handling Sysads resignation/termination spyteknow007 (Aug 04)
| 
Intro
