[auton-users] Bad Passwords & Backups
Jacob Joseph
jmjoseph at andrew.cmu.edu
Sun Jul 4 12:36:33 EDT 2004
Hi. I'll get straight to it:
Passwords:
-----------------
I regularly attempt to crack the lab users passwords with a few
automated tools. Aside from the obvious implications for the specific
user, weak passwords pose a threat to the entire lab network. Such
potential access exposes otherwise private, and inherently trusted
resources to untrusted users, opening the entire lab to any number of
exploits. I WILL BE SENDING SEPARATE EMAIL TO THOSE USERS WITH WEAK
PASSWORDS. A few key points for all:
* Use at least 8 characters. 6 is not enough, even if random.
* Do not use your user name in your password.
* Do not use a single name or word, such as a character from a fantasy
novel or movie.
Backups:
------------------
I've reworked my own scripts a bit and want to remind everyone of the
lab backup policy:
*When: Nightly at 2am.
*What: -Home directories smaller than 15GB are backed up entirely.
-All databases are backed up.
-Those home directories which are larger must have a ~/backup.lst
to indicate which files are backed up.
*How long: The general policy is to store the backups as long as
possible with the space I have. For now, it looks like I can guarantee
the 2-3 most current weeks.
-Jacob
More information about the Autonlab-users
mailing list