Xref: utzoo comp.unix.internals:2546 comp.unix.admin:1595 Path: utzoo!utgpu!news-server.csri.toronto.edu!cs.utexas.edu!usc!zaphod.mps.ohio-state.edu!mips!dimacs.rutgers.edu!rutgers!mcnc!duke!egr.duke.edu!jpe From: jpe@egr.duke.edu (John P. Eisenmenger) Newsgroups: comp.unix.internals,comp.unix.admin Subject: Re: Unix security additions Message-ID: <1406@cameron.egr.duke.edu> Date: 15 Apr 91 20:41:55 GMT References: <1991Apr15.163013.20421@ux1.cso.uiuc.edu> Sender: news@egr.duke.edu Followup-To: comp.unix.internals Lines: 49 From article <1991Apr15.163013.20421@ux1.cso.uiuc.edu>, by edotto@ux1.cso.uiuc.edu (Ed Otto): > jfh@rpp386.cactus.org (John F Haugh II) writes: >>>Under this circumstances, would it be wise to trust the same people that >>>they don't take the backup tapes and read them anywhere else? >>If you don't have physical security (i.e., they can take the tapes >>anywheres they want) and you can't trust your personnel, I'd suggest >>you turn off the computer system and just give up. Hmm. This may seem like a silly idea, but could you set it up that a user doesn't need root privileges to perform dumps and that the dumps are encrypted so that only you could decrypt and read the data? That way: 1, they don't need to know the root password; and 2, they can't take and read a dump tape on another machine... This would at least allow you to offload dumps to someone else. > Nice thought...in my case it's a combination lock on the door to the machine > room that, two hours after it was installed, 46 people had the combination > to... Yes, combination locks are a total waste of expense. I'm amazed at how many people can't remember a 5-digit combination. Unfortunately there isn't a way to keep it from spreading like wildfire. We use combination locks on our workstation rooms and were having the above problem, so I looked into getting a magnetic card reader for the door. These have been installed throughout campus now (even on Coke machines), so I thought it'd be a reasonable thing to have. The Uni- versity wanted about $3000 for the installation, plus $100/mo for support. All in all I wish we had keyed locks and charged a deposit for the keys -- it'd be better all the way around. >>Basically your complaint is that you must give privileges to people >>that you can't trust not to abuse them, and that you can't control >>the data once they've take it. Sounds like you got a rather serious >>problem on your hands. Good luck. > Yup...once the nasties are out and about your workplace, you've lost the whole > war...I mean, anyone with su access can run the 'adduser' script...and once > THAT happens, well, kiss it goodbye. Not necessarily. For example I use a piece of software that grabs the data from protected files that I can keep offline and mount only when needed. One run of this software will freeze all unwarranted accounts, thus getting rid of the meanies... It also makes tracking classes, graduating students, etc. a might bit easier. -John