Too many admins spoil your security
Source: InfoWorld - Posted by Dave Wreski   
Server Security We've all known for a long time that unnecessary use of elevated privileges is a bad thing. You shouldn't be logged in as an administrator while surfing the Internet or checking your email; in particular, you shouldn't do that stuff while logged onto a server as an admin. Your organization shouldn't have too many enterprise admins, domain admins, or server admins. We all have that. But recently I came across a large shipping container client on the Asia-Pacific rim that literally had thousands of application administrators. They have thousands of applications, many of which have hundreds of administrators; in fact, for some of those applications, every user was an administrator. In most of those cases, I'm referring to normal user accounts (not an OS or network admin account) that had the highest-level application privileges.

Read this full article at InfoWorld

Only registered users can write comments.
Please login or register.

Powered by AkoComment!