Re: Root is God? (was: Mutt & tmp files)
-----BEGIN PGP SIGNED MESSAGE-----
On Friday 16 November 2001 11:39, Mathias Gygax wrote:
> > There is no way, nor any reason why, to setup a system in such a way
> > that the maintainer of the system cannot maintain it.
> maintainer is someone else. root is there for serving the daemons.
> administrating the machine is the next security level and this time in
> the kernel (to deactivate it). the interface is clean.
Did you follow this thread from the beginning? The original question asked
how one could secure their email from reading by root. It's clear in this
case that "root" is a synonym for SysAdmin. And the bottom line is that you
can't . SA may log in as root, as guest, as santaclaus - it really doesn't
matter what the user name and uid is. What matters is that someone has full
access to the system. Someone has the ability to install keystroke sniffers
and other cute little toys. If they're willing to go to the extent of trying
to recover a deleted file, they're likely willing to go to the extend of
modifying executables, etc. root may not be God on your system, but that's
not the same as saying your system is atheistic. There IS a God; he just
answers to a different name. And you can't hide from God.
-----BEGIN PGP SIGNATURE-----
-----END PGP SIGNATURE-----