Unix security additions

Peter da Silva peter at ficc.ferranti.com
Fri Apr 12 07:35:48 AEST 1991


In article <19183 at rpp386.cactus.org> jfh at rpp386.cactus.org (John F Haugh II) writes:
> At some point in time you have to trust the people you've hired to do
> their jobs.  The point of slicing root privileges up into little pieces
> is to make it so you can control what "their job" is.

These two sentences are contradictory: if you can trust them, you don't
need to slice up privileges. If you need to slice up privileges, it's
because you can't trust them.

> Likewise, if you can only restore
> files that were backed up using the special utilities, you can't just
> put any program you want on the system.

Sure: back up to tape, read tape on a non-secure system, edit it, write
it out again, and restore.
-- 
Peter da Silva.  `-_-'  peter at ferranti.com
+1 713 274 5180.  'U`  "Have you hugged your wolf today?"



More information about the Comp.unix.internals mailing list