Check enterprise applications for static passwords

Friday, April 27, 2007, 18:11

This news item was posted in Data Security, Server security category and has 0 Comments so far.

Passwords work, users accept them, IT has to deal with them. We all know that authenticating users and controlling access to application data is the logical starting point for corporate security programs. However, a persistent problem which may potentially be the bigger risk to the business are the credentials hard-coded into custom applications.
Most of the corporate authentication effort is on identifying interactive users, especially those connecting remotely. Password management, including password change policies and mandatory password strength testing, help to keep this process rationally secure. Unattended enterprise applications, however, are another story.

Read more at ivanr

Related posts brought to you by Yet Another Related Posts Plugin.

Tagged with: Data Security, Development, Enterprise-Applications, Servers-&-Data-Centers

You can follow any responses to this entry through the RSS 2.0 feed.

You can leave a response, or trackback from your own site.

:::: Recent entries
Securing the code in Vista Hackers have blown the whistle on banking fees Twitter hacked through phishing Rural areas progress through IT Shift in budgets by IT companies Top 10 provider of CEH training K7 TotalSecurity now comes with “Pre-Installation Super Scanner’ Motorola got a jump on its CES announcements

Check enterprise applications for static passwords

Leave a Reply