Reply to: Question for the Experts: Free Website Based Password Store

pms

granted,

hwoever, this is not my problem, someone else can solve this for the long term, i just want a solution to keep things going, _they_ can find the long term answer

mess = good for contractors

Milan.

I can only echo what DimPrawn and Ratewhore have just said.

Single-sign-on is not just the only solution you need in your environment. You may want to look at Identity Management tools as well. Based on your posts, it appears that your environment is in a complete mess, which you seem to be happy to live with. At which point, I will desist and wish you the best.

Sounds pretty clear to me. Your system administration has evolved into a mess and you want a single free solution which all the admins can access and view/change passwords.

You get what you pay for and I'm guessing this will not turn out to be very secure at all...

Hear hear!

Get all the passwords onto an A1 poster, have a few hundred printed and post it out to all your offices in India etc.

Presto! No more forgotton passwords!

Hi,

I am speaking about Unix command line level passwords, passwords for webservice communication between systems, sys admin passwords for systems, etc

I have seen a Single Sign On web interface for the Unix level, you logon to the Web Interface and then you can access the Unix command line for any system for which you are authorised

well for me these wonderful security consultant solutions are a pile of steamy smelly brown stuff which only intorduce another layer of pain to hinder the .net sys admin who is just trying to get onto the unix command line, these web based access systems are unstable, at the mercy of more administrators who are maintaining those systems, not to mention slow, and not 100% available

when compared to the unix command line running in putty on my desktop


next, how is your super single sign on system going to work with .net administrator tools which can only be started from OS level cmd line on windows and unix and which require yet another log on when they open ?

thanks but no thanks

password db will be just fine thank you

Milan.

Single-sign-on is still the way forward. I'm saying this from the point of view of a Security Analyst / Consultant. If one disgruntled engineer leaves, and you have 2 or 3 passwords to worry about, then single sign on is pointless. Judging by your prediciment, you have a lot more than 2 or 3, and if someone leaves (disgruntled or not), they are in a more powerful position to cause distruction to the integrity of your employers / company, as you won't have time to change all the passwords quickly enough.

This is a simplistic view on the benefits of Single-Sign-On, but it is something you should seriously look at.

pmeswani,


thank you very much

on spec that tool should be just the job

as you can see, the coders here do not get it, they are stuck in their tunnel vision typical coder style thinking about Single Sign On

Thnks again, I owe you a beer.

Milan.

If you want to patent or copyright the idea... go for it. I'll let you work on the idea.

Now there's a new idea, backups in MP3 format.

mp3.

Tape is so yesterday.

How does any of this help you change the tape Milan?

My back was killing me afterwards.

Did it take a while to get the taste out your mouth?

I once had a free blowjob. It was worth having.