- Training
- Training Live Events
- Training Without Travel
- SANS Courses
- Certified Instructors
- Career Roadmap
- Training Calendars
- SANS @Home
- SANS OnDemand
- Community SANS
- SANS Mentor Program
- SANS Onsite
- SANS SelfStudy
- SANS Partnership Series
- SANS Workshop Series
- Webcasts
- Work Study
- Events Archive
- DoD 8570
- Voucher Credit Program
- group discounts
- Certification
- Resources
- Vendor
- Portal
- Storm Center
- College
- Developer
- About
the most trusted source for computer security training, certification and research
The Use and Administration of Shared Accounts
- Abstract
- This paper will discuss the use and security of shared accounts. While shared accounts exist on other systems, this paper has been limited in scope to focus on UNIX- and Microsoft Windows-based systems, however the basic principles should be applicable to other systems as well. The paper will start by defining what shared accounts are, some of their uses, and some of associated risks of those uses. Following that will be a discussion about how to secure shared user accounts to help mitigate their associated risks. It will conclude by presenting information on how a shared account that had minimal security applied and was "in the wild" was secured.