On Tue, 4 Jan 2011, Brad Knowles wrote: > IMO, the setting of curriculum and helping to enhance proper education > of people in the field is one thing we should be looking at. > > On the PIO side, I would say that we could keep an eye on current > affairs and prepare news releases on related subjects. The most recent > case that I can think of that would be relevant would be the one > involving Terry Childs and his refusing to hand over administrative > passwords to San Francisco's city network. We wouldn't necessarily have > to take a particular side on a case like that, but for example I think > we should be able to highlight the issues that are relevant for systems > administrators, and perhaps what the criteria should be for determining > whether it is dangerous for a system administrator to hand over the > administrative passwords and what kinds of procedures they might follow > in such a case.
in this case we could have talked about the problem with only one person having the passwords, independant of his refusal to hand them over (the 'hit by a bus' factor), and provide pointers to documents for best practices (if you really only have one admin, the passwords should be in a safety deposit box or ...) > Personally, I don't think that we have a snowball's chance of getting > anyone to pay attention to us on the legislative side until such time as > we have gotten our name out there -- repeatedly, over a long period of > time. We have to demonstrate credibility before anything else. I strongly agree with this. David Lang _______________________________________________ Discuss mailing list [email protected] https://lists.lopsa.org/cgi-bin/mailman/listinfo/discuss This list provided by the League of Professional System Administrators http://lopsa.org/
