|
|
|
|
|
|
by couchand
779 days ago
|
|
|
The credentials for service accounts are generally available to a system admin but I think in most cases it would be a strange request to ask for them, so not a strong vector for social engineering. A service account is used to give limited permissions on one system to another system. Normally only that system would need access to them, not any human. Their main benefit is that, since no person is trying to do their day job here, the account can be locked down to precisely the permissions it needs. The reality is that service accounts are usually given extremely permissive access initially and then forgotten about. This makes them juicy targets for attackers. |
|
|