Presuming it's not you...

IWETHEY v. 0.3.0 | TODO

1,095 registered users | 1 active user | 2 LpH | Statistics
Login | Create New User

Welcome to IWETHEY!

Post #16,543

by static

11/5/01 1:36:44 AM

Presuming it's not you...

... change the passwords for any userids he would have had (if you know them all). If he would have had root et al, that means changing that, too. I imagine this is probably fairly obvious. Can't help shortening the virtual legwork, though.

Depending on how well you know said employee, said computer room and whether or not you must do this after he becomes an ex-employee, I'd start on entry points and obvious boxes. In other words, if there's a dial-in authentication system, revoke his access on that first. If he would have had access to a router, change that early. Etc etc. Hmm. Servers providing stuff like NIS should be next.

Wade, who hopes he's not being too obvious.

"All around me are nothing but fakes
Come with me on the biggest fake of all!"

Post #16,547

by Steve Lowe

11/5/01 2:06:02 AM

Another that might be too obvious..

Depending on the ex's knowledge of the network(s), you might want to force all users to change passwords at next login.

We had a similar situation recently..I used it as an opportunity to implement a saner password policy (most users had "password" as their password).

-----
Steve

Help! Please - (broomberg) - (7) - Nov. 5, 2001, 12:04:33 AM EST

Presuming it's not you... - (static) - (1) - Nov. 5, 2001, 01:36:44 AM EST

Another that might be too obvious.. - (Steve Lowe) - Nov. 5, 2001, 02:06:02 AM EST

Make sure... - (bepatient) - Nov. 5, 2001, 02:07:23 AM EST

another list off the top of my head - (boxley) - Nov. 5, 2001, 09:58:26 AM EST

If you don't already have an intrusion detection system... - (ben_tilly) - (1) - Nov. 5, 2001, 01:15:22 PM EST

Yes, yes, yes. - (tseliot) - Nov. 5, 2001, 01:42:45 PM EST

Keep a backup of the past week - (orion) - Nov. 6, 2001, 04:46:53 PM EST

iwethey.org

That exact plan? GET OUT OF MY HEAD!!!!
99 ms