BeyondTrust

Security in Context: The BeyondTrust Blog

Welcome to Security in Context

Bringing you news and commentary on solutions and strategies for protecting critical IT infrastructure in the context of your business.

Rock the Cradle of Root Access Gently

Posted February 11, 2011    Peter McCalister

The hand that rocks the cradle rules the world. This is an absolute truth. Although originally referring to motherhood, there is an especially poignant application from an enterprise point of view.  As long as the hand (your IT manager with root access) handles that cradle gently (your server and the sensitive information therein), your world will remain a secure place.

It’s when the cradle rocks a little too hard that walls start crumbling. And how do you keep that cradle calm and steady? The answer lies with the hand. Having an all-powerful IT administrator is dangerous and expensive- a cost that is not worth the security of your enterprise. Want your framework to stay standing? Let’s look at a few things you can do.

  1. Adopt the four golden words of server security: lock down root access. Your IT manager should not be allowed to be “the hand.” With root access they have can look at, move, and/or manipulate everything. There is no one in your organization, under any circumstances, that should be allowed rule the world. Don’t make the mistake of thinking your IT manager would never do such a thing, or that a breach won’t happen to you. Chances are good that’s exactly what the University of Hawaii thought. If they had integrated a solution to lock down root access, 40,000 confidential student records wouldn’t have been exposed.
  2. Create and maintain a keystroke log. All actions should be transparent and a record must be kept. This way, in the event that a breach does occur, all keystrokes are documented for easy auditing and identification. This will also raise the flag on any suspected wrongdoing.
  3. Install a solution that will alert you to the use of any forbidden keywords. This will proactively keep your sensitive and mission-critical information protected while warning you about any employee or contractor who may potentially have the intention of harming your company.

Securing your sever boils down to eliminating admin rights. It’s important to give all employees access to only the information they need, which is never root access. Participate in this enterprise security best practice today. Protect your cradle from the all-powerful IT hand keep it rocking smooth and slow

Leave a Reply

Additional articles

How-BeyondInsight-Malware-Analysis-Works

Death, Taxes and Malware: BeyondInsight 5.5 Adds Malware Analysis

Posted May 6, 2015    Chris Burd

Death, Taxes and Malware: BeyondInsight 5.5 Adds Malware Analysis. BeyondTrust combats advanced persistent threats with new capabilities in BeyondInsight IT Risk Management Console. BeyondInsight Clarity threat analytics capability incorporates malware analysis to identify APTs and other hidden threats.

Tags:
, , , ,
pbps-blog3

8 Reasons Customers Switch to Password Safe for Privileged Password Management

Posted May 5, 2015    Scott Lang

It’s clear that privileged password management tools are essential for keeping mission-critical data, servers and assets safe and secure. However, as I discussed in my previous post, there are several pitfalls to look out for when deploying a privileged password management solution. At this point, you may be wondering how BeyondTrust stacks up.

Tags:
, , , , , , , ,
medicalbreach

The Magnitude of Cybersecurity Problems in United States Healthcare

Posted April 30, 2015    Dr. Mansur Hasib

Dr. Mansur Hasib discusses healthcare compliance and why healthcare records are far more valuable to the modern cyber criminal than any other data.

Tags:
, , ,