| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Message-ID: <001801c3f26f$cdf9d5e0$0201a8c0@fosi> From: steve.wray at paradise.net.nz (Steve Wray) Subject: Re: Removing FIred admins > From: Michal Zalewski [mailto:lcamtuf@...ttot.org] > > On Fri, 13 Feb 2004, Steve Wray wrote: > > > Actually, isn't that what DRM is all about? > > No, not in the real world. Sorry that was actually a bit of a facetious joke; DRM (Digital Restrictions Management)could,effectively, make DRM compliant PCs such that there are programs that they cannot run, hence they would not be Turing complete. I didn't mean that DRM would help in firing sysadmins. The rest of it is good advice though. Carrots work better than sticks (except that some 'donkeys' apparently like pain. Ahem). > Here's a good hint: hire reasonable people, treat them well. > To help them > help you, establish access policies, keep admins accountable, > and track > access rights. Require more than one person to carry out > certain critical > actions. > > Keep in mind that accounting and cleanup procedures are the > last line of > defense. When employees turn against you, you can clean it all up, but > they still are an enemy you rather would not have. > >
Powered by blists - more mailing lists