-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 On Fri, 20 Aug 2004, John Summerfield wrote:
> A user who can create users can do anything. Er, not true. A user who can sudo vi /etc/passwd can do anything. However, a user who can sudo /usr/local/bin/dedicated-user-creation-script cannot. > A user who can install software can do anything. Mostly true. > A user who can do restores can do anything. Not true. Yes, if you can sudo tar, you can do anything. But once again, sudo /usr/local/bin/dedicated-restore-script can't. > A user who can do backups can make off with a copy of your secrets:-) Bah, who keeps secrets on unencrypted hard drives anyway? :) - -- GnuPG public key available from http://ca.geocities.com/redvision.geo/gnupg_key.html -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.2.5 (GNU/Linux) iD8DBQFBJrIuMqUhaD+LmFcRAoy4AJ9YDb+jv/ot/Dih8FOZlhf/z2WfMwCdEPYo iiB02c6u67BzbbMGkM1ss34= =QeCO -----END PGP SIGNATURE----- -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
