RE: Stupid users and weak policies

  • From: "josephk" <josephk@xxxxxxxxx>
  • To: "[ISAserver.org Discussion List]" <isalist@xxxxxxxxxxxxx>
  • Date: Wed, 14 Jul 2004 08:20:07 -0700

Sometimes policies need to consider manufacturing lines, where different
shifts share the same logon and password.
In that case then you need a policy that knows when the shifts change
and what users are sharing the same password.

Joseph

-----Original Message-----
From: Jim Harrison [mailto:jim@xxxxxxxxxxxx] 
Sent: Wednesday, July 14, 2004 6:50 AM
To: [ISAserver.org Discussion List]
Subject: [isalist] Stupid users and weak policies


http://www.ISAserver.org

This isn't a problem for ISA; it's one for your company (school, hacker
club, etc.) Your management needs to define and enforce a compay
security policy that creates new job openings when it's known that users
are sharing passwords.

  Jim Harrison
  MCP(NT4, W2K), A+, Network+, PCG
  http://isaserver.org/Jim_Harrison/
  http://isatools.org
  Read the help / books / articles!


On Wed, 14 Jul 2004 11:59:29 +0500
 <a_sidiqi@xxxxxxxxxx> wrote:
http://www.ISAserver.org

Hi Jim
I am Anwar, I posted my query but didn't get any reply. What I need to
know is that is this possible that we can limit the session through ISA
to one session only per user. Means that if a person has been
authenticated by ISA server from one PC the same can not be
authenticated from some other Pc at the same time. Actually we have
given internet access to limited # of staff. But some of the staff have
given away their passwords to those who do not have access to internet,
and they connect using the authorized users password. 
My manager needs to restrict the staff to single session only. Please
help me out


Anwar Ahmed Siddiqui
Assistant Systems Officer
Information Technology Department
Pakistan Petroleum Limited
Tel: 111568568, Ext: 569



------------------------------------------------------
List Archives: http://www.webelists.com/cgi/lyris.pl?enter=isalist
ISA Server Newsletter: http://www.isaserver.org/pages/newsletter.asp
ISA Server FAQ: http://www.isaserver.org/pages/larticle.asp?type=FAQ
------------------------------------------------------
Other Internet Software Marketing Sites:
World of Windows Networking: http://www.windowsnetworking.com Leading
Network Software Directory: http://www.serverfiles.com No.1 Exchange
Server Resource Site: http://www.msexchange.org Windows Security
Resource Site: http://www.windowsecurity.com/ Network Security Library:
http://www.secinf.net/ Windows 2000/NT Fax Solutions:
http://www.ntfaxfaq.com
------------------------------------------------------
You are currently subscribed to this ISAserver.org Discussion List as:
jim@xxxxxxxxxxxx To unsubscribe visit
http://www.webelists.com/cgi/lyris.pl?enter=isalist

------------------------------------------------------
List Archives: http://www.webelists.com/cgi/lyris.pl?enter=isalist
ISA Server Newsletter: http://www.isaserver.org/pages/newsletter.asp
ISA Server FAQ: http://www.isaserver.org/pages/larticle.asp?type=FAQ
------------------------------------------------------
Other Internet Software Marketing Sites:
World of Windows Networking: http://www.windowsnetworking.com Leading
Network Software Directory: http://www.serverfiles.com No.1 Exchange
Server Resource Site: http://www.msexchange.org Windows Security
Resource Site: http://www.windowsecurity.com/ Network Security Library:
http://www.secinf.net/ Windows 2000/NT Fax Solutions:
http://www.ntfaxfaq.com
------------------------------------------------------
You are currently subscribed to this ISAserver.org Discussion List as:
josephk@xxxxxxxxxxxxxxxxx To unsubscribe visit
http://www.webelists.com/cgi/lyris.pl?enter=isalist

Other related posts:

  1. Home
  2. isalist
  3. Archive
  4. 07-2004