Like UNIX, at its core, Linux’s security model is basically monolithic – you either have root access or you don’t. But root access is too powerful for so many reasons; routinely using the actual root account – while easy and still frighteningly common – is so dangerous it borders on negligent. Auditors know about root and what questions to ask. In fact some auditors already have their risk findings written up regarding root and privileged access before they even begin assessing your environment!
Considering recent breaches exploiting privileged credentials, as well was continuing audit recommendations for accountability on account usage and reduction in privileges, how do IT organizations limit who has assess to root accounts to reduce the risk of compromises without hindering productivity?
The good news is that there are a variety of things built on top of Linux to make privileged access more granular, more accountable, more auditable and overall more secure. BeyondTrust is hosting a webcast on January 27, 2015 where I will show you how root access and least privilege management works in Linux. You will learn about how administrators can still do their work efficiently without logging on as root. I’ll will show you how sudo works and how you can use sudo to:
- Limit which commands users can execute
- Ensure accountability between admins
- Eliminate logons as root
- Create least privilege profiles that allow people to get their work down without sacrificing security
- How to monitor misuse of root access
- How to protect root accounts and passwords
- Controlling shell access
- Auditing logons, commands and other activity
Randy Franklin Smith, Microsoft MVP & Windows Security Expert, and CEO at Monterey Technology Group, Inc.
Randy Franklin Smith is an internationally recognized expert on the security and control of Windows and Active Directory security who specializes in Windows and Active Directory security. He performs security reviews for clients ranging from small, privately held firms to Fortune 500 companies, national, and international organizations.
Randy Franklin Smith began his career in information technology in the 1980s developing software for a variety of companies. During the early 1990s, he led a business process re-engineering effort for a multi-national organization and designed several mission critical, object-oriented, client/server systems. As the Internet and Windows NT took off, Randy focused on security and led his employer's information security planning team. In 1997, he formed Monterey Technology Group, Inc. where he serves as President.