[ On Tuesday, September 25, 2001 at 17:05:06 (-0400), Paul Farber wrote: ]
> Subject: Re: Why restrict root logins?
>
> But if the already have your root password they already have the smarts to
> changes things after they are done. Editing wtmp/utmp syslogs is not
> terribily difficult... also satan/et al should be able to determine
> if/when files where changed and really smart admins write syslogs to a
> remote machine with limited access for ONLY syslogs.
Exactly: logs don't have to be stored on the machine that created them.
Accountability is all about enforcing trust. If you little trust for
your admins than you have to use stronger technical measures to force
accountability onto them for their actions.
--
Greg A. Woods
+1 416 218-0098 VE3TCP <[EMAIL PROTECTED]> <[EMAIL PROTECTED]>
Planix, Inc. <[EMAIL PROTECTED]>; Secrets of the Weird <[EMAIL PROTECTED]>
---------------------------------------------------------------------
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
