Security control (experince)
来源:互联网 发布:java鼠标点击事件 编辑:程序博客网 时间:2024/04/29 04:22
Below I will list somethings about the system security control:
1:The first is about using the specilist tool to control the system command executation:
the software is named sudo.
when the individual account login to the system, the have no permission to check the system with the
previlidge id, but some command executation need the previlige right, so we can add the commands
into the sudo configuration so that the individual id can also use the previlige id right to check the system
this tool is to reduce the "root" id usage counts.
2: The second is about the previlige id withdrawing process:
I will describe how to withdraw the previlige id or the application function id process.
2.1:
the application team or the support team ask the 3rd part support team, which is located in HongKng, serviced for
customer, ask them to open a ticket, tell them this ticket is to folliw one specilist case,
also should give them the hostname, or server ip address, requst contact number, them if the case have busienss
or system inpact, last suggest them to assign this ticket to any support team.
2.2:
the next step is to login the third part system, which called XX system, the system is to manage the previlige id
or function id, we will sedect which sever I want to check, first input the server ip address,
then the XX system will show all the account, which are already managed by the tool.
we select the id which we want to withdraw the password, enter the requsted ticket, as well as the the reason.
finally, submmit the the request.
2.3:
the customer XX tool manged team will see your requst, them will revert your requst to the specilist system manager
in generally speaking, the manager see the reason from the manager tool, they know the reason about the request.
they will node their head, and approve the requst.
2.4:
after we got the approval from the system manager, we can see the related id's password, so that
we can login into the system with some previlige id to check the system or do some action.
3: The third thing is also about the using the security tool to control the production server login.
The ctrix software, which is called virtual mechine, the virtual machine ip address is added to the
production server's allowhost, this means that only the allowed host can login into the production
server. Enven you installed the virtual tool in your personal machine, you still can not login into
the production server.
With this security login control, when we do some changes or actions, we are only allowed to first
login to the virtual machine, if we have no permission to login into the virtual machine, then, we
can not login into next any servers.
4: The fourth security is about the Data central access control, the process is about below:
4.1:
First, raise a form requst to the datacentral and the manager, try to get the approval.
in the requst form, the access person name and identify card number is neccessary. which will
be checked when the indivadual come to the datacenter.
4.2:
Second, when the indivual come to the datacenter, show theire ID card is neccessary.
- Security control (experince)
- Control-Theoretic Methods for Cyberphysical security(翻译)
- Spring Security#Expression-Based Access Control
- Two Security Models in Oracle EBS:Function Security + Role-Based Access Control
- Security
- security
- Security
- Security
- security
- Security
- Security
- Security
- Security
- Implementing NAP and NAC Security Technologies: The Complete Guide to Network Access Control
- Control
- Control
- Control
- Control
- 请不要走入网络推广的死穴
- Activity与Thread之间的通讯
- 网络字节序与主机字节序的转换
- Quartz 2D编程指南(2) - 图形上下文(Graphics Contexts)
- 金山卫士开源软件之旅(九) KUI高级界面(列表控件、树控件例子、超文本、网页控件)
- Security control (experince)
- 解决导出Excel后0丢失的问题
- MP3的帧结构
- Java中的数组以及使用数组进行增删改查的算法复杂度
- c#动态编译反射计算器
- fatal error C1189: #error : errno has been defined before inclusion of errno
- MP3编码技术原理
- MP3解码原理
- MYSQL建库建用户命令