Critical vulnerability in all versions of Linux.

Critical vulnerability in all versions of Linux. Please check with your vendor for updates and plan to apply patches as soon as possible. For more information, see: https://xint.io/blog/copy-fail-linux-distributions

Read More

YALE-MSS-9.3: Provision access to IT systems and data according to the principle of least privilege

Standards Group:
YALE-MSS-9: Authentication and Authorization

YALE-MSS-9.3: Provision access to IT systems and data according to the principle of least privilege

Low Risk Endpoint Required Moderate Risk Endpoint Required High Risk Endpoint Required Low Risk Server Required Moderate Risk Server Required High Risk Server Required Low Risk Mobile Device Required Moderate Risk Mobile Device Required High Risk Mobile Device Required Low Risk Network Printer Required Moderate Risk Network Printer Required High Risk Network Printer Required

Details

The principle of least privilege dictates that access to data and systems must be minimal: just enough for a user to perform their function. For example, a user account is only granted privileges sufficient for that account to carry out routine work and nothing more.

To apply this standard:

  • Assign someone (and possibly a backup) to manage account access
  • Determine the minimal access needed for the typical end-user
  • Limit access to data and the system only to those who require it
  • Maintain an inventory of all privileged and service accounts
  • Perform a review of account privileges at least annually