From: Kenn Humborg (kenn at domain bluetree.ie)
Date: Tue 12 Oct 1999 - 14:12:35 IST
As networks grow, the number of passwords you have to
remember grows too. Also, having them all in one person's
head results in a single-point-of-failure (aka. the hit-by-a-bus
problem).
A bit of discussion here led to a proposal where individual
passwords are written down in sealed, tamper-proof envolopes
and stored in a fairly secure place. This allows for:
1. Evidence of someone opening an envelope, thus triggering
the 'change that password' procedure.
2. Ability to retrieve a single password without compromising
all the other passwords.
Does anyone know of any solid advice on this sort of thing?
All the bloody user-oriented password advice (pick a good
password and don't write it down) is completely useless
in this situation. Surely larger companies have established
systems and procedures for this.
Later,
Kenn
This archive was generated by hypermail 2.1.6 : Thu 06 Feb 2003 - 13:04:43 GMT