Agreed. How often do people tie their VPN into, for example, AD or LDAP? And how many people tie their email credentials to, for example, AD or LDAP? So if I get your email credentials from your lost cellphone or PDA, then I have your VPN credentials..
This really has nothing to do with admins. --- Puryear Information Technology, LLC Baton Rouge, LA * 225-706-8414 http://www.puryear-it.com Author: "Best Practices for Managing Linux and UNIX Servers" "Spam Fighting and Email Security in the 21st Century" Download your free copies: http://www.puryear-it.com/publications.htm Wednesday, February 14, 2007, 6:40:32 PM, you wrote: > The admin isn't the only user that has valuable information. I don't > think we are talking only about network security, but data security as well. > --mat > Kevin Kreamer wrote: >> Dustin Puryear wrote: >> >>> What are your thoughts on whether email accounts should be separate >>> from normal network accounts? Pros? Cons? Should companies just not >>> allow external access to email via POP or IMAP and just require >>> Webmail access so users have to manually enter passwords? Does that >>> solve the real problem? I'm interested in hearing what everyone has to >>> say. >>> >> >> I'm going to add here the opinion that if your network security relies >> on the security of non-admin user passwords, you've already got >> problems. Likewise if your admins pick insecure passwords or write them >> down in sticky notes. >> >> Kevin >> >> >> _______________________________________________ >> General mailing list >> General at brlug.net >> http://mail.brlug.net/mailman/listinfo/general_brlug.net >> >> > _______________________________________________ > General mailing list > General at brlug.net > http://mail.brlug.net/mailman/listinfo/general_brlug.net
