C2 secure systems and the superuser
Chris Torek
torek at elf.ee.lbl.gov
Fri Mar 15 10:45:36 AEST 1991
Actually, `system' accounts (or `operator' privileges that allow mount,
restore, etc., without being root) *are* useful, but not because they
are `more secure'. The point is (or should be) not that system cannot
become root, but rather that when system makes mistakes, they have less
drastic effects (in most cases) than the same mistakes made as root.
--
In-Real-Life: Chris Torek, Lawrence Berkeley Lab EE div (+1 415 486 5427)
Berkeley, CA Domain: torek at ee.lbl.gov
More information about the Comp.unix.programmer
mailing list