Should I let administrator account bypass IP ACL?

Asked 3 years, 8 months ago

Viewed 96 times

Let's say there is a system that can set IP ACL for security. If administrator can't bypass IP ACL, account may by locked up when machine or network IP changed But if administrator can bypass IP ACL, then an attacker can bypass IP ACL when got administrator account. IP ACL gets meaningless.

Is there good way to mitigate both situations?

edited Mar 19, 2022 at 21:07

mentallurg

12.7k5 gold badges39 silver badges51 bronze badges

asked Mar 19, 2022 at 5:11

Seongbok Youn

101

If your administrator account is compromised, you've got bigger problems and many other protections are rendered "meaningless".

belkarx
– belkarx

2022-03-21 05:53:56 +00:00
Commented Mar 21, 2022 at 5:53
When IP ACL enabled, attacker should hack physical device in IP ACL range, even if administrator account has been compromised. But this leads to losing control of IP is losing account.

Seongbok Youn
– Seongbok Youn

2022-03-21 11:10:36 +00:00
Commented Mar 21, 2022 at 11:10

Add a comment |

0 You must log in to answer this question.

Start asking to get answers

Find the answer to your question by asking.

Ask question

Explore related questions

See similar questions with these tags.

Stack Exchange Network

Should I let administrator account bypass IP ACL?

0

You must log in to answer this question.

Hot Network Questions

Should I let administrator account bypass IP ACL?

0

You must log in to answer this question.

Related

Hot Network Questions