What's the point, again?
Note that we have not identified any previously unknown weaknesses
Note, further, that we haven't invented any new techniques
All we are doing is casting old ideas in such a way that they are productive and scary
For instance:
Who here still thinks it is a good idea to have a local administrator account with the same password on each workstation?
Everybody "knows" that it's a good practice to minimize local accounts: here is why
Expensive consultants have been advocating Kerberized environments, hardended workstations, and Active Directory designs that compartmentalize privilege: now there's more motivation
This page is maintained by Foofus. Please direct comments and questions to
foofus <at> foofus.net.
![[Back]](leftArrow.gif)
![[Back]](homeArrow.gif)
![[Forward]](rightArrow.gif)