[CLUE-Tech] Sysadmin Access
Keith Hellman
kehellman at yahoo.com
Tue Dec 18 14:11:06 MST 2001
Let's not kid ourselves about encryption/zip disks solving the root-access
problem. root just writes a little ol' kernel module that inspects uid/pid
on each sys_write() call and (for your particular user/your decryption
program ) copies the data elsewhere. The minute you decrypt that 1024bit
protected file, it will be his. Likely to happen? Not - because most
(IMHO) S/As are respectable people. But is this scenario plausible? Very
- there is no protection for a malicious or ethically challenged root.
If you want privacy or require confidentiality, get a notebook and keep it
off the net.
=====
Keith E. Hellman
kehellman at yahoo.com
__________________________________________________
Do You Yahoo!?
Check out Yahoo! Shopping and Yahoo! Auctions for all of
your unique holiday gifts! Buy at http://shopping.yahoo.com
or bid at http://auctions.yahoo.com
More information about the clue-tech
mailing list