GoFuckYourself.com - Adult Webmaster Forum - View Single Post

Spudstr · 10-17-2010, 05:51 PM

[QUOTE=directfiesta;17616724]That excuse of rogue employee does not fly.

Each server hace their own user/pass, that user of said server should change once delivered to them.

In the case that the host creates an admin account on the server , it is never the same password for all boxes ... please, if it is , someone seriously screwed up .
[\QUOTE]

I am guessing you are not aware with exactly how a managed service works. Sure you can have a different/unique root password on each server, by all means you should.

However that would be a nightmare to manage and most large organizations utilize ssh keys. Now along with ssh keys the practice of rotating those keys daily should be part of operations to prevent things like rogue employees from doing things like this.

10-17-2010, 05:51 PM
Spudstr Confirmed User Industry Role: Join Date: Jan 2003 Location: In a Tater Patch Posts: 2,321	[QUOTE=directfiesta;17616724]That excuse of rogue employee does not fly. Each server hace their own user/pass, that user of said server should change once delivered to them. In the case that the host creates an admin account on the server , it is never the same password for all boxes ... please, if it is , someone seriously screwed up . [\QUOTE] I am guessing you are not aware with exactly how a managed service works. Sure you can have a different/unique root password on each server, by all means you should. However that would be a nightmare to manage and most large organizations utilize ssh keys. Now along with ssh keys the practice of rotating those keys daily should be part of operations to prevent things like rogue employees from doing things like this. __________________ Managed Hosting - Colocation - Network Services Yellow Fiber Networks icq: 19876563