Re: [Fwd: Re: https and self signed]

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]



On Fri, June 17, 2016 13:08, Valeri Galtsev wrote:

>
> We do not expire accounts until the person leaves the Department
> and grace period passes. Then we do lock account and after some
> time person's files are being deleted. This is the policy, and
> this is what we do. The only time when account expiration is being
> set is for undergraduate students who temporarily work with some
> professor. For them expiration is being changed when the continue
> to work with the professor next academic year.
>
> Is this not what everybody does?
>

Every end-user account, including my own, is given an expiry date six
to twelve months in the future and that is extended at intervals as
needed.  The only exception to this are the root users which have no
expiry date set.

A forgotten and disused user account that retains access to your
system is a significant risk in my opinion.

-- 
***          e-Mail is NOT a SECURE channel          ***
        Do NOT transmit sensitive data via e-Mail
 Do NOT open attachments nor follow links sent by e-Mail

James B. Byrne                mailto:ByrneJB@xxxxxxxxxxxxx
Harte & Lyne Limited          http://www.harte-lyne.ca
9 Brockley Drive              vox: +1 905 561 1241
Hamilton, Ontario             fax: +1 905 561 0757
Canada  L8E 3C3

_______________________________________________
CentOS mailing list
CentOS@xxxxxxxxxx
https://lists.centos.org/mailman/listinfo/centos



[Index of Archives]     [CentOS]     [CentOS Announce]     [CentOS Development]     [CentOS ARM Devel]     [CentOS Docs]     [CentOS Virtualization]     [Carrier Grade Linux]     [Linux Media]     [Asterisk]     [DCCP]     [Netdev]     [Xorg]     [Linux USB]
  Powered by Linux