Unix Shell - sudo & Sox compliance

This is Interesting: Free IT Magazines  
Home > Archive > Unix Shell > May 2007 > sudo & Sox compliance





You are viewing an archived Text-only version of the thread. To view this thread in it's original format and/or if you want to reply to this thread please [click here]

Author sudo & Sox compliance
thesoulcrusher

2007-05-17, 1:18 pm

Hello,

I am trying to convince my boss to stop allowing our users to login as
root (superuser). Currently our users login to our unix server with
their own account, then as needed, they will do an su and put in the
root password.

This scares me, for a bunch of reasons. Mainly, one is that we still
use telnet, not ssh, which I am also trying to enforce as well.
Secondly, some of our users who have root access, have little to no
unix knowledge, whatsoever. This can be very dangerous...

What I proposed to my boss is, that we do not give out the root
password anymore. Instead, using sudo, give users access to certain
commands/scripts. Then they can simply do 'sudo command' ... And then
none of them ever have to type in the root password, and everything
they do as su, is logged in the sudoers.log file..

My boss wants to know how sudo fits in with SOX , if it is compliant
with SOX, if SOX has any restrictions with using sudo, etc.

Also , we need to know how sudo complies with HIPPA. As we are soon to
become HIPPA compliant. Which brings me to telnet, which I fear, is
not HIPPA, compliant, in that it has no security , and data can be
captured with relative ease...

Any information would be greatly appreciated, Thank you

Sponsored Links






Free braindumps | Software forum | Database administration forum

Copyright 2003 - 2009 webservertalk.com