[unisog] Admin Password Management

Chris Green cmgreen at uab.edu
Tue Feb 22 21:29:55 GMT 2005


How do people ensure that admin passwords stay up to date, especially as
part of restoration procedures?  The popular method here has been to have a
text file per group delivered to a safe with Director level access.  The big
problem with this is auditing the passwords and ensuring that everyone
coughs up the goods each round of change.

http://www.e-dmzsecurity.com/par.html seems like an interesting idea.  Not
sure I'd trust a new webapp enough to perform this function.

Does anyone have solutions in place other than a cron job reminder to
administrators? :)

Thanks,
Chris




More information about the unisog mailing list