IWETHEY v. 0.3.0 | TODO
1,095 registered users | 0 active users | 0 LpH | Statistics
Login | Create New User
IWETHEY Banner

Welcome to IWETHEY!

New Presuming it's not you...
... change the passwords for any userids he would have had (if you know them all). If he would have had root et al, that means changing that, too. I imagine this is probably fairly obvious. Can't help shortening the virtual legwork, though.

Depending on how well you know said employee, said computer room and whether or not you must do this after he becomes an ex-employee, I'd start on entry points and obvious boxes. In other words, if there's a dial-in authentication system, revoke his access on that first. If he would have had access to a router, change that early. Etc etc. Hmm. Servers providing stuff like NIS should be next.

Wade, who hopes he's not being too obvious.

"All around me are nothing but fakes
Come with me on the biggest fake of all!"

New Another that might be too obvious..
Depending on the ex's knowledge of the network(s), you might want to force all users to change passwords at next login.

We had a similar situation recently..I used it as an opportunity to implement a saner password policy (most users had "password" as their password).

-----
Steve
     Help! Please - (broomberg) - (7)
         Presuming it's not you... - (static) - (1)
             Another that might be too obvious.. - (Steve Lowe)
         Make sure... - (bepatient)
         another list off the top of my head - (boxley)
         If you don't already have an intrusion detection system... - (ben_tilly) - (1)
             Yes, yes, yes. - (tseliot)
         Keep a backup of the past week - (orion)

So we're in the Temple of Mitra now?
31 ms