Xref: utzoo comp.unix.internals:2526 comp.unix.admin:1576
Path: utzoo!utgpu!news-server.csri.toronto.edu!cs.utexas.edu!swrinde!elroy.jpl.nasa.gov!usc!rpi!uupsi!ficc!peter
From: peter@ficc.ferranti.com (Peter da Silva)
Newsgroups: comp.unix.internals,comp.unix.admin
Subject: Re: Unix security additions
Message-ID: <PONA272@xds13.ferranti.com>
Date: 11 Apr 91 21:35:48 GMT
References: <39950@cup.portal.com> <1991Mar14.230944.9184@eci386.uucp> <PCG.91Mar17174428@aberdb.test.aber.ac.uk> <1991Mar22.024124.3238@ec <1090@mwtech.UUCP> <19183@rpp386.cactus.org>
Reply-To: peter@ficc.ferranti.com (Peter da Silva)
Organization: Xenix Support, FICC
Lines: 18

In article <19183@rpp386.cactus.org> jfh@rpp386.cactus.org (John F Haugh II) writes:
> At some point in time you have to trust the people you've hired to do
> their jobs.  The point of slicing root privileges up into little pieces
> is to make it so you can control what "their job" is.

These two sentences are contradictory: if you can trust them, you don't
need to slice up privileges. If you need to slice up privileges, it's
because you can't trust them.

> Likewise, if you can only restore
> files that were backed up using the special utilities, you can't just
> put any program you want on the system.

Sure: back up to tape, read tape on a non-secure system, edit it, write
it out again, and restore.
-- 
Peter da Silva.  `-_-'  peter@ferranti.com
+1 713 274 5180.  'U`  "Have you hugged your wolf today?"