Originally Posted by manjunathgn
Thanks for the reply...
U can write the procedure on my personal mail...
First, you should never post your email address on a public forum as this is likely to be picked up by spammers.
Second, you should treat the machine as compromised. Where you want to go from here is up to you (or your company).
If you just want to get the machine back to a "safe" setting, you could:
- reinstall the OS and restore your data from a backup tape (prior to you giving away the password)
- change the password to something else (use a complex password!)
- don't repeat the same mistake in future.
You should review your companies security procedures.
Do you have a written third party network usage agreement?
This should be checked by a lawyer to ensure that it is legally binding and should be signed by any third parties that need access to your system (including external engineers) prior to granting access
When granting access to systems, only give enough permissions for them to perform the task at hand.
If something has to be done as root, get the third party to provide instructions and perform the task yourself, or have them come onsite and be monitored throughout the work. Do not give the root password but insist that you enter the password as required and do not leave them alone with root access.