Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.
Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.




Network Security Security-Basics
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

Disaster Encryption

from [jaxjunk1] Network Security [Permanent Link]
Subject: Disaster Encryption
Date: 24 Apr 2007 19:17:33 -0000 
I work for a large company.  We just contracted with an off-site disaster 
recovery facility.  We have a DR Plan with scripts to get us back up in case of 
a disaster.

My question is what is the best practice for giving them admin passwords.  We 
are a Unix, Windows, Mainframe, etc.. shop.  We also have blackberry's.

My thinking was to set up the following.

We have 8 individuals with authority to execute the DR Plan based on various 
levels of catastophe.  These individuals work in various parts of our state.  

These 8 individuals all have a Blackberry.  My thinking was to place a password 
on their blackberry in the Password Keeper (or a better app).  When they call 
the DR Center they give them that password.

At the DR center we would have an encrypted "vault" on either a unix box or a 
Windows DC (we replicate their).  The DR admin would be told the password to 
the "vault" during the execute process.  Inside the vault would be the user ids 
and passwords necessary to implement the recovery process.

We'll make sure the ids and passwords have the bare minimum they need to bring 
us back to life.

Has anyone seen anything like this or have a better suggestion?
[More messages with this same subject...]




<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  Pen-Testing Novell Products, Terry Cutler
Next by Date:  Re: Personal Firewall recommendations, Tsu
Previous by Thread:  Pen-Testing Novell Products, Terry Cutler
Next by Thread:  Re: Disaster Encryption, Matthew Kosmoski
Indexes:  [Date] [Thread] [Top] [All Lists]