Quoting Moritz Grimm <[EMAIL PROTECTED]>: > > > > Ever heart of a multiuser system where one user shouldn't be able to > > acces the files of another user? Not all users are thinking about this > > issue and many forget to change the modes for confidential files. IMO, > > But keeping confidential files on "true" multiuser systems is stupid ...
I disagree, How about a heavy build server for different projects? Or shared (insert word)-solutions. You cannot be to careful with your files, one day, as normal user, you will forget to chmod() that file ... > IMNSHO. And you cannot hide anything from the administrator. You depend > on how well the admin is capable of securing the rest of the system and > not have it rooted by a 3rd party(*) including the other users. Then you shouldn't use the system at all. It is not because something might be/become a flaw, that you don't have to care about the rest. Every extra layer of defence _does_ protect you from a subset of attacks, even how small that subset is, it counts. > If I create new users for the sake of them having a Unix > shell, then it's something different, but this is so very rare ... and > there really shouldn't be any confidential things on such a multiuser > shell server. Who says that the admin is any more trustworthy than some > other, regular users? They are not, but most of the time they give you confidential information that you must use on that box that you use for stuff other users may not access, like database/pop3 information. > > > Moritz > > *: OpenBSD had only one remote hole in the default install, but a few > more (very few, relatively speaking) local root vulnerabilities. And > there are also still numerous ways of breaking OpenBSD inspite of sane > defaults and exploit mitigation techniques in place. > > In the end, it simply boils down on properly assessing risks, giving a > box a defined purpose (even if it's an "eierlegende Wollmilchsau"(**)), > and enforcing an appropriate security and usage policy. Solving social > problems with social means is often enough the only viable way. > > **: Rough translation: A fictional all-purpose animal; a sow that grows > wool, gives milk and lays eggs. > > ---------------------------------------------------------------- This message has been sent through ihosting.be To report spamming or other unaccepted behavior by a iHosting customer, please send a message to [EMAIL PROTECTED] ----------------------------------------------------------------
