Question

1. Briefly explain the principle of least privilege and how it should be applied. 2. Explain what describes a truly secure password.

Answer 1

Hey here is answer to your question.

If you liked the answer feel free to upvote. Thanks

1. Principal of least privilege is the practice of limiting access rights for users to the bare minimum permissions which they need to perform their work.

In this users are granted permission to read, write or execute only the files or resources they need to do their jobs: In other words, the least amount of privilege necessary.

Thus in case of a breach damage will be bare minimum.

How to apply

1. First conduct a privilege audits by checking all existing processes. as which should be allowed to be user in what case by case basis.

2. Start all account by low privs only. As the user work they will request what tasks they need to perform so based on that we can increase the privs.

3.Assigning just-in-time privileges by restricting higher-level privileges only to the time when they are actually required.

4. Track all the users which are there and what users are using which privs.

2. A truly secure password must have these traits..

• difficult to detect by both humans and computer programs
• Its entropy must be as high as possible
• People should not be able to guess based on your social life like mobile number, DOB, car plate number first school etc.
• Use a minimum password length of 8 or more characters if permitted.
• Avoid using the same password twice
• Generate passwords randomly where feasible.
• Include lowercase and uppercase alphabetic characters, numbers and symbols if permitted.