San Fran Admin Takes Over City Network

A cautionary tale for any network, government or business: The San Francisco Chronicle reported this morning that a network admin working for the city of SF has changed the digital locks on a new, multi-million dollar 'FiberWAN' network and is refusing access to anyone else, according to authorities.

He won't give up the passwords, they say, even as he's charged with four counts of computer tampering.

Though the story doesn't provide any technical details - such as whether passwords were changed on servers, network equipment, or the whole shebang - it's a scary thought for any important network. The article says this particular network stores documents such as "officials' e-mails, city payroll files, confidential law enforcement documents and jail inmates' bookings."

These types of events are thankfully rare and most admins are generally trustworthy folks who care far too much about their professional reputations to pull anything like this. But all the same, here's a suggestion to protect your own company's network against such insider hijacks.

Ask your IT folks to set up your monitoring system such that when critical passwords are changed, such as root on a unix server or the admin login on network equipment, the IT group, including the manager, gets an e-mailed notice. If at least one other person knows when someone suddenly begins to change critical passwords on multiple systems, you'll have a chance to head off that particular hijack before it goes too far.

This shouldn't be a difficult move, especially if your network uses a centralized authentication server. You might be able to monitor using SNMP, or with a tool called Tripwire that can check to see when particular files change.

You can also make sure that the IT manager and staff knows how to reset the root or admin password on critical systems. Most systems should allow for doing so if you have physical access - keep the instructions for just this kind of emergency.

Recommend this story?
Vote Yes
Vote No
0 Yes
0 No
Email
Comment

Community Comments

News For Your Business

More News

News

Business Center - August 21, 2008
In India, IPhone 3G More Likely a Consumer Device In India, the iPhone 3G, which launches at midnight Thursday, will be more of a consumer phone.
Business Center - August 21, 2008
Asustek Turns to Celerons Amid Atom Shortage Asustek turned to Intel Celeron CPUs in its latest Eee PCs in part due to the Atom shortage.
Laptops - August 21, 2008
Asustek Aims New Eee PCs at Emerging Markets Asustek's latest Eee PCs, the 904HD and 1000HD are aimed at emerging markets.
Business Center - August 21, 2008
WSJ: Microsoft Hires Seinfeld to Bite Apple Microsoft plans to hire comedian Jerry Seinfeld for its new marketing campaign, the Wall Street Journal reported Thursday.

Featured Resources

Premier Content From Our Sponsors

HP Ink Center You don't need a big budget to produce high quality marketing materials. Click here for more info...
CDW Virtualization Center What is Virtualization and how can it help you save money? Click here for more info...

Featured Whitepapers

White papers, case studies and product info from top brands

Sophos Security Threat Report: Mid-Year Update Hackers attack businesses, blogs and Web 2.0 sites... The latest Security Threat Report from Sophos gives you a comprehensive insight into the very latest methods being used by cybercriminals to try to out-fox traditional security systems. Download ...
10G Ethernet: Overcoming Network Overload with Rackonomics Are you looking for a way to overcome network overload? Many IT departments are faced with this issue today or will be in the future. BLADE Network Technologies is proud to be sponsoring this informational webinar with our guest speaker Cindy Borovi...