BeyondTrust

Security In Context

BeyondTrust’s blog tackles important issues for your company including network and data security.
Learn more and protect your company!

Rock the Cradle of Root Access Gently

Post by admin February 11, 2011

The hand that rocks the cradle rules the world. This is an absolute truth. Although originally referring to motherhood, there is an especially poignant application from an enterprise point of view.  As long as the hand (your IT manager with root access) handles that cradle gently (your server and the sensitive information therein), your world will remain a secure place.

It’s when the cradle rocks a little too hard that walls start crumbling. And how do you keep that cradle calm and steady? The answer lies with the hand. Having an all-powerful IT administrator is dangerous and expensive- a cost that is not worth the security of your enterprise. Want your framework to stay standing? Let’s look at a few things you can do.

  1. Adopt the four golden words of server security: lock down root access. Your IT manager should not be allowed to be “the hand.” With root access they have can look at, move, and/or manipulate everything. There is no one in your organization, under any circumstances, that should be allowed rule the world. Don’t make the mistake of thinking your IT manager would never do such a thing, or that a breach won’t happen to you. Chances are good that’s exactly what the University of Hawaii thought. If they had integrated a solution to lock down root access, 40,000 confidential student records wouldn’t have been exposed.
  2. Create and maintain a keystroke log. All actions should be transparent and a record must be kept. This way, in the event that a breach does occur, all keystrokes are documented for easy auditing and identification. This will also raise the flag on any suspected wrongdoing.
  3. Install a solution that will alert you to the use of any forbidden keywords. This will proactively keep your sensitive and mission-critical information protected while warning you about any employee or contractor who may potentially have the intention of harming your company.

Securing your sever boils down to eliminating admin rights. It’s important to give all employees access to only the information they need, which is never root access. Participate in this enterprise security best practice today. Protect your cradle from the all-powerful IT hand keep it rocking smooth and slow

Leave a Reply

Additional articles

2

Organizing your PowerBroker Desktops Rules

When tackling a project to remove administrator privileges from users, it is critical to understand what applications and tasks will be impacted. Some things just break or won’t function properly when users are no longer administrators. Of course, PowerBroker Desktops is designed to elevate those apps and tasks that require administrator privileges so that there…

Post by admin October 20, 2012
Tags:
,
img

Don’t say “Lockdown”!

Here at BeyondTrust, we have been fortunate to be able to speak with thousands of security professionals in dozens of industries, and it is astonishing how differently organizations assess risk and approach computer security. Some organizations are very strict about security and are able to completely lock down desktops. Others are significantly more lax about…

Post by admin October 15, 2012
Tags:
, ,
img

PowerBroker for Windows – Solution Deployment

PowerBroker for Windows (PBW) is designed to integrate directly into your corporate Active Directory (AD) structure without modifying your existing schema. In the asset labeled “1” below, an administrator simply loads a Group Policy Option (GPO) snap-in onto an asset that uses the Microsoft Management Console (MMC).  The administrator can then create policies and rules…

Post by Morey Haber October 11, 2012
Tags:
, , , , , , , ,
TOP