On 2006-07-27 Jon R. Kibler wrote: > Oh, BTW, as you try this task, publishing a list of the required > minimum privilege for each application would be a great help to > everyone. I wanted to do that, but my clients all objected.
There's a (german) web page dedicated to this [1]. However, since its home users are the target group it doesn't have information on many enterprise level applications. Might be a starting point though. [1] http://www.noadmin.de/ Regards Ansgar Wiechers -- "All vulnerabilities deserve a public fear period prior to patches becoming available." --Jason Coombs on Bugtraq --------------------------------------------------------------------------- ---------------------------------------------------------------------------
