John:
Over the years auditors at my company have come up with a similar
question. While I give it to the auditors I do no give it out to say
the average person.
1. I have seen passwords on the syslog.
2. I have also seen arguments that have come up in meetings over how
operators replied to messages and other operator actions. They
(operators) do not want to be second guessed on day to day jobs (they
get enough if that from their boss and me). Any information that is
pertinent to the job is in their joblog end of story.
Ed
On Sep 18, 2012, at 8:30 AM, McKown, John wrote:
Well, that's the general question. Is there any reason why the
"average joe", regardless of job function, should *NOT* have the
ability to look at SYSLOG? Does anybody put "sensitive" data out to
it?
--
John McKown
Systems Engineer IV
IT
Administrative Services Group
HealthMarkets(r)
9151 Boulevard 26 * N. Richland Hills * TX 76010
(817) 255-3225 phone *
[email protected] * www.HealthMarkets.com
Confidentiality Notice: This e-mail message may contain
confidential or proprietary information. If you are not the
intended recipient, please contact the sender by reply e-mail and
destroy all copies of the original message. HealthMarkets(r) is the
brand name for products underwritten and issued by the insurance
subsidiaries of HealthMarkets, Inc. -The Chesapeake Life Insurance
Company(r), Mid-West National Life Insurance Company of TennesseeSM
and The MEGA Life and Health Insurance Company.SM
----------------------------------------------------------------------
For IBM-MAIN subscribe / signoff / archive access instructions,
send email to [email protected] with the message: INFO IBM-MAIN
----------------------------------------------------------------------
For IBM-MAIN subscribe / signoff / archive access instructions,
send email to [email protected] with the message: INFO IBM-MAIN
