IT Baseline Protection Manual - The Information Warfare Site

Safeguard Catalogue - Hardware & Software Remarks
____________________________________________________________________ .........................................
The passwords of the three application-specific IDs should only be known to
the administrator responsible for maintaining and updating the database
objects of the respective applications. In contrast, the password of the database
ID used to manage the central database objects is not known to any of these
administrators; instead it is placed in charge of a further administrator. This
prevents an application-specific administrator from performing modifications
to central database objects which might impair the functionality of the other
applications.
Additional controls:
- What measures have been taken to ensure that actions by database
administrators do not result in inconsistencies?
- Have all database administrators received an additional ID with restricted
rights?
- Are the additional user IDs employed by default?
____________________________________________________________________ .........................................
IT-Baseline Protection Manual: Oktober 2000