[49] in The Cryptographic File System users list
Re: Protection against superuser?
daemon@ATHENA.MIT.EDU (matthew tebbens)
Thu Apr 23 11:20:08 1998
From owner-cfs-users@research.att.com Thu Apr 23 15:20:08 1998
Return-Path: <owner-cfs-users@research.att.com>
Delivered-To: cfs-mtg@bloom-picayune.mit.edu
Received: (qmail 18174 invoked from network); 23 Apr 1998 15:20:06 -0000
Received: from unknown (HELO rumor.research.att.com) (192.20.225.9)
by bloom-picayune.mit.edu with SMTP; 23 Apr 1998 15:20:06 -0000
Received: from research.att.com ([135.207.30.100]) by rumor; Thu Apr 23 11:15:40 EDT 1998
Received: from amontillado.research.att.com ([135.207.24.32]) by research-clone; Thu Apr 23 11:17:34 EDT 1998
Received: from nsa.research.att.com (majordomo@nsa.research.att.com [135.207.24.155])
by amontillado.research.att.com (8.8.7/8.8.7) with ESMTP id LAA29169;
Thu, 23 Apr 1998 11:17:30 -0400 (EDT)
Received: (from majordomo@localhost) by nsa.research.att.com (8.7.3/8.7.3) id LAA09304 for cfs-users-list; Thu, 23 Apr 1998 11:15:01 -0400 (EDT)
X-Authentication-Warning: nsa.research.att.com: majordomo set sender to owner-cfs-users@nsa.research.att.com using -f
Received: from research.att.com (research-clone.research.att.com [135.207.30.100]) by nsa.research.att.com (8.7.3/8.7.3) with SMTP id LAA09297 for <cfs-users@nsa.research.att.com>; Thu, 23 Apr 1998 11:14:59 -0400 (EDT)
Received: from tebbens.com ([208.195.230.10]) by research-clone; Thu Apr 23 11:15:50 EDT 1998
Received: from localhost by tebbens.com
with smtp id m0ySNjV-000NVSC
(Debian Smail-3.2 1996-Jul-4 #2); Thu, 23 Apr 1998 11:16:17 -0400 (EDT)
Date: Thu, 23 Apr 1998 11:16:17 -0400 (EDT)
From: matthew tebbens <matthew@tebbens.com>
To: John R MacMillan <john@interlog.com>
cc: cfs-users@research.att.com
Subject: Re: Protection against superuser?
In-Reply-To: <13205.893336517@localhost>
Message-ID: <Pine.LNX.3.96.980423111409.17635A-100000@backup.tebbens.com>
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII
Sender: owner-cfs-users@research.att.com
Precedence: bulk
Hmmm, gets me thinking...
Someone should write a script to 'cdetach' during a possible breakin
or anything other suspecious activity.
Matthew
On Thu, 23 Apr 1998, John R MacMillan wrote:
> |As far as root being able to go anywhere..... I would only use/install
> |cfs on a system where I am the only person as root. I don't think
> |I would trust to use CFS remotely, or on a system where I didn't have
> |root.
>
> I use CFS on a system at work where others have root. It's obviously
> not as secure in that environment as it is here at home, so I don't
> keep anything particularly sensitive there, but it does have some
> advantages. For instance, system backups only contain the encrypted
> files. Also, I only cattach the directory while I'm using it, so it
> would not be unlikely that I would notice someone else logging onto
> my machine as root (that is, the `attacker' would have a fairly high
> risk of being discovered).
>
