[Subject Prev][Subject Next][Thread Prev][Thread Next][Subject Index][Thread Index]

Re: [LI] Information on security desired...

To: linux-india@xxxxxxxxxxxxxxxxxxxxx
Subject: Re: [LI] Information on security desired...
From: Atul Chitnis <achitnis@xxxxxxxxxxxxxxxx>
Date: Tue, 12 Oct 1999 16:21:29 +0530 (IST)
In-reply-to: <3802FD6C.2D250021@RiverRun.COM>
Reply-to: linux-india
Sender: owner-linux-india@xxxxxxxxxxxxxxxxxxxxx

On Tue, 12 Oct 1999, Mannu Kalra wrote:

> I need to implement security on a couple of linux machines. The kind of
> security I am looking for should bar even root from accessing
> files/directories of users. Special focus is to be given to the
> /var/spool/mail directory where the mailboxes reside. Not even root
> should be able to cat or cp or mv those files.

Simple answer - no, technically that's not possible.

This sounds more like a human problem than a technical one - it is always
better to give the root password only to people who are not likely to go
and read other people's mail.

In case you *do* have this problem, then I suggest the use of "sudo" - a
program that allows specific people to do specific things as root - with
full logging, but stops them from doing anything else.

ftp://ftp.freshmeat.net/pub/rpms/sudo/

Atul

--------------------------------------------------------------------
The Linux India Mailing List Archives are now available.  Please search
the archive at http://lists.linux-india.org/ before posting your question
to avoid repetition and save bandwidth.

Follow-Ups:
- Re: [LI] Information on security desired...
  - From: samir agrawal
- Re: [LI] Information on security desired...
  - From: Raj Mathur

References:
- [LI] Information on security desired...
  - From: Mannu Kalra

Prev by Subject: RE: [LI] Information on security desired...
Next by Subject: Re: [LI] Information on security desired...
Previous by thread: [LI] Information on security desired...
Next by thread: Re: [LI] Information on security desired...
Index(es):
- Subject
- Thread