Hello, I am a software developer, db administrator and systems administrator in a private medical facility. The owner of the facility asked me to give him the list of passwords of all the users because he wants to have full access to everything. Obviously I did not give him anything and trie dto explain that that was not even fathomable in my mind to do. Is there a rule, or law, or whatever that specifies that a system administrator cannot give away the passwords of everybody to anybody..even if it is the owner of the facility or organization???

[ reply ]

Link to this comment: http://www.securityfocus.com/comments/infocus/1537/1126#1126