From: Kenn Humborg (kenn at domain bluetree.ie)
Date: Tue 12 Oct 1999 - 14:12:35 IST
As networks grow, the number of passwords you have to
remember grows too. Also, having them all in one person's
head results in a single-point-of-failure (aka. the hit-by-a-bus
A bit of discussion here led to a proposal where individual
passwords are written down in sealed, tamper-proof envolopes
and stored in a fairly secure place. This allows for:
1. Evidence of someone opening an envelope, thus triggering
the 'change that password' procedure.
2. Ability to retrieve a single password without compromising
all the other passwords.
Does anyone know of any solid advice on this sort of thing?
All the bloody user-oriented password advice (pick a good
password and don't write it down) is completely useless
in this situation. Surely larger companies have established
systems and procedures for this.
This archive was generated by hypermail 2.1.6 : Thu 06 Feb 2003 - 13:04:43 GMT