Personally, I don't see an issue with having Ctrl-Alt-Del. The trouble I was referring to has more to do with bringing live applications offline suddenly. Users don't have access to any of the physical servers nor do they have access to the console of the VMs so that is, at least, eliminated as an issue.
-Mathew "When you do things right, people won't be sure you've done anything at all." - God; Futurama "We'll get along much better once you accept that you're wrong and neither am I." - Me On Tue, May 13, 2014 at 1:23 PM, Robert Hajime Lanning <[email protected]>wrote: > On 05/13/14 15:08, Mathew Snyder wrote: > >> We have a project that has recently gone through an SCA and one of the >> findings is that Ctrl-Alt-Del is enabled. Understandably, this could >> cause trouble. Although, since the list of people with access to the >> consoles that the finding is on is limited, I don't see it as a proper >> security issue. >> > > What is the difference between access to this vs. access to the power > button, security wise? (both physical and both detrimental) > > Unless you are talking about access via IP KVM... > > -- > Mr. Flibble > King of the Potato People > http://www.linkedin.com/in/RobertLanning > > _______________________________________________ > Tech mailing list > [email protected] > https://lists.lopsa.org/cgi-bin/mailman/listinfo/tech > This list provided by the League of Professional System Administrators > http://lopsa.org/ >
_______________________________________________ Tech mailing list [email protected] https://lists.lopsa.org/cgi-bin/mailman/listinfo/tech This list provided by the League of Professional System Administrators http://lopsa.org/
