>>> On Thu, Jan 17, 2008 at 9:21 AM, in message <[EMAIL PROTECTED]>, Joell Chockley <[EMAIL PROTECTED]> wrote: > We did find out after getting the problem fixed that our WebSphere Admin > had mistyped a command they use to clear a log file (did a mv on /dev/null > instead of a cp)...we've changed their procedure so they don't do either > command anymore!
This raises a whole new set of questions, one of which being "why does a WebSphere admin have general root access?" To prevent situations such as what you've experienced, that's not a good idea, and it's likely your auditors will have a much harsher assessment. Mark Post ---------------------------------------------------------------------- For LINUX-390 subscribe / signoff / archive access instructions, send email to [EMAIL PROTECTED] with the message: INFO LINUX-390 or visit http://www.marist.edu/htbin/wlvindex?LINUX-390
