The SU log includes root activities

Accounts -- especially those of super users -- should never be shared. Sharing accounts makes logging and accountability difficult. However, on most Unix systems, the only "super user" account is the "root" account. To facilitate meaningful logging and monitoring, Unix administrators should always log on with their regular user account and then use su to switch to the root account.

In addition to increased accountability, this process prevents malicious users from remotely logging into the most powerful account. This is especially important in Unix because the most powerful username, root, is well-known and often not changed.

This test shows that Unix administrators are following the su process.

Please click here to ask Chris for guidance on this test or the results that you received.

11-10

	New
Active Directory Date Converter
Unix Timestamp Date Converter
Unix Security Analyzer
Windows Security Analyzer
NIST SP 800-63 password policy compliance checker

	Sponsors

	News: Schneier
UAE Man-in-the-Middle Attack Against SSL Successful Attack Against a Quantum Cryptography System Cyber-Offence is the New Cyber-Defense Wanted: Skein Hardware Help More Skein News

	News: SecurityFocus
News: Change in Focus News: Twitter attacker had proper credentials News: PhotoDNA scans images for child abuse News: Conficker data highlights infected networks Brief: Google offers bounty on browser bugs

	News: CNN
Users amused, annoyed by Facebook Places 'NHL2K11' shoots, but sometimes misses Facebook testing a 'stalker button' iTunes Ping: The missing thing

	Statistics

Mesothelioma Survival