[1829] in SIPB-AFS-requests

home help back first fref pref prev next nref lref last post

Re: backups

daemon@ATHENA.MIT.EDU (Marc Horowitz)
Mon Feb 27 21:40:34 1995

To: yoav@MIT.EDU
Cc: star-maintainers@MIT.EDU
In-Reply-To: Your message of "Mon, 27 Feb 1995 21:15:31 EST."
             <199502280215.VAA00749@quiche-lorraine.mit.edu> 
Date: Mon, 27 Feb 1995 21:40:17 EST
From: Marc Horowitz <marc@MIT.EDU>

I think this is a bad idea, as this will effectively give the person
with backup privileges read access to everything backed up on that
host.

It is true that there are other weak links in the chain (the backups
go over the net using non-encrypted rsh, the tapes are not physically
protected), but I don't think adding another weak link is acceptable.

I simply believe that backups are sufficiently sensitive that we
should not give backup privileges to people to whom we would not give
root privileges.

		Marc

home help back first fref pref prev next nref lref last post