On Friday 05 August 2005 05:33, [EMAIL PROTECTED] wrote:
> Hi
>
> What about splitting the password in two parts??
>
> The application guru will only know the first 4 letters and the admin only
> the last 4 letters...
>
> Does that makes sense??
>
> Cheers,
> Thomas
>
> Am Donnerstag, 4. August 2005 13:22 schrieb Ken Foskey:
> > Got this one today, strange one:
> >
> > "Do you know if it is possible to setup a Linux redhat server to require
> > two passwords to gain root access? The responsibilities for the server
> > are going to be split over two different teams and we don't want either
> > to have root access without the other team knowing about it. Please let
> > me know if you can come up with something."
> >
> > Basically they would like to set up the machine so that it requires two
> > people to sign in to root, an application guru and an administrator.
> > If anything is destroyed then they are both accountable as they look
> > over each others shoulders.
> >
> > Anyone ever done something like that?
1) Read the readhat security manual
2) Disable root logins (totally)
3) Disable su (totally)
4) Allow root access via ssh
5) Use a paraphrase so: to ssh you need a passwd (1 team) and a passphrase
(2nd-team)
The End
James
--
SLUG - Sydney Linux User's Group Mailing List - http://slug.org.au/
Subscription info and FAQs: http://slug.org.au/faq/mailinglists.html
