Path: utzoo!utgpu!jarvis.csri.toronto.edu!mailrus!iuvax!cica!ctrsol!uakari.primate.wisc.edu!indri!uflorida!haven!adm!smoke!gwyn
From: gwyn@smoke.BRL.MIL (Doug Gwyn)
Newsgroups: comp.unix.questions
Subject: Re: A way to monitor your files
Message-ID: <11022@smoke.BRL.MIL>
Date: 10 Sep 89 11:34:15 GMT
References: <547@chem.ucsd.EDU> <1140@virtech.UUCP> <29114@news.Think.COM> <1142@virtech.UUCP>
Reply-To: gwyn@brl.arpa (Doug Gwyn)
Organization: Ballistic Research Lab (BRL), APG, MD.
Lines: 10

In article <1142@virtech.UUCP> cpcahil@virtech.UUCP (Conor P. Cahill) writes:
>Yes.  I did not intend to say that C2 is the solution to the problem with
>the superuser, but further levels of security (possibly B1, but more 
>probably B2) will begin to dispense with the idea of an omnipotent being.

And then the sysadm will merely shut down the system, boot up his
browser, and examine files on the supposedly secure disk.

Nothing short of an excellent encryption scheme will foil the
determined snooper in a situation like the one we were discussing.