Protecting your password
14 years 3 months ago #34935
by sose
sose
Network Engineer
analysethis.co/index.php/forum/index
Protecting your password was created by sose
I supervise some users in a mission critical project. These users login to effect monetary transaction on their systems. their passwords need to be seriously concealed. But in Practice I find out that it is impossible for them to conceal their passwords from support technician because they log in often their presence. so what is the way forwad
sose
Network Engineer
analysethis.co/index.php/forum/index
14 years 3 months ago #34936
by Arani
Picking pebbles on the shore of the networking ocean
Hi Sose
Had a similar problem. Found a two way solution:
1) Asking the support technician politely to look away when the user types in the password, and seriously, no miming or whispering the password why they type it (I have reports that some of these support technician are lip readers and have an acute sense of hearing!!!)
2) Getting the users to change their password immediately after they have divulged it to any support technician.
It's all about educating the users to be careful.
Had a similar problem. Found a two way solution:
1) Asking the support technician politely to look away when the user types in the password, and seriously, no miming or whispering the password why they type it (I have reports that some of these support technician are lip readers and have an acute sense of hearing!!!)
2) Getting the users to change their password immediately after they have divulged it to any support technician.
It's all about educating the users to be careful.
Picking pebbles on the shore of the networking ocean
14 years 3 months ago #34938
by sose
sose
Network Engineer
analysethis.co/index.php/forum/index
Replied by sose on topic Re: Protecting your password
arani you are making sense, but in this case the tech has to tell the user to login about 15 times on the spot where trying to troubleshoot some issues
sose
Network Engineer
analysethis.co/index.php/forum/index
14 years 3 months ago #34939
by Arani
Picking pebbles on the shore of the networking ocean
Well in that case, the practice still stands. First of all the users have to remember their passwords. That is critical. And when they need IT assistance, they will have to put it in with the support guy looking away. Or if you want ease of use, then go to rule '2', get the user to change the password straightaway.
Picking pebbles on the shore of the networking ocean
14 years 3 months ago #34943
by S0lo
Studying CCNP...
Ammar Muqaddas
Forum Moderator
www.firewall.cx
Replied by S0lo on topic Re: Protecting your password
In our place (as IT support), we always look away without being asked. I think the head of the IT better tell that to his IT guys. As some users might feel it awkward to say it.
Studying CCNP...
Ammar Muqaddas
Forum Moderator
www.firewall.cx
14 years 3 months ago #34946
by JamieP
I agree totally, people working in IT should know the value of a secure password, and frankly, if i was the head of IT and had someone working for me that might want to steal passwords, they wouldnt be working for me much longer.
The emphasis for password security should certainly be on IT rather than the users.
Jamie Parks
Network Engineer, UK
Replied by JamieP on topic Re: Protecting your password
In our place (as IT support), we always look away without being asked. I think the head of the IT better tell that to his IT guys. As some users might feel it awkward to say it.
I agree totally, people working in IT should know the value of a secure password, and frankly, if i was the head of IT and had someone working for me that might want to steal passwords, they wouldnt be working for me much longer.
The emphasis for password security should certainly be on IT rather than the users.
Jamie Parks
Network Engineer, UK
Time to create page: 0.147 seconds