Date: Mon, 14 Jun 1999 12:09:47 -0700 From: Kent Stewart <kstewart@3-cities.com> To: Zhihui Zhang <zzhang@cs.binghamton.edu> Cc: Ilia Chipitsine <ilia@cgilh.chel.su>, "Jason L. Schwab" <jschwab@royal.net>, freebsd-questions@freebsd.org, freebsd-security@freebsd.org Subject: Re: reading files. Message-ID: <3765537B.6D0BC801@3-cities.com> References: <Pine.GSO.3.96.990614140451.8308A-100000@sol.cs.binghamton.edu>
next in thread | previous in thread | raw e-mail | index | archive | help
Zhihui Zhang wrote: > > On Mon, 14 Jun 1999, Ilia Chipitsine wrote: > > > > Unless you are root or has somehow gotten the root password. Or you may > > > steal the hard drive and examine it elsewhere. BTW, I know Windows-NT has > > > a feature that does not allow the Administrator (known as root in Unix) to > > > access the file of a normal user. I wonder if this feature can be added > > > to FreeBSD easily. > > > > it can be added easily, use PGP, that was the how i prevented my > > account at my school to be examined by root. > > > > Pretty Good Privacy? Can you show me how to do it in FreeBSD or give me > any pointers? I think something like PGP is the only way. The way I remember administrator priviledges with NT is that you can't keep me from accessing a file. I just have to take ownership of the user's directories and then change the ownership of the file I want to look at. When I get through, I would have to change the ownership of everything I changed back to the user. I also think this would leave many tracks behind, which isn't a quiet way like su'ing to the user from root. As a backup operator, I think I could backup your files and restore them on a different system. Then you wouldn't know I have accessed your files. I've never backed up a user's files on one system and restored them to another system but I have never seen anything that would prevent me from doing that. I may have to add the user to that system but then I would know the password and it would be trivial. The problem with PGP is that by the time you have a pretty good key it will be easy to forget and then you have lost access to your file. Kent > > Thanks. > > -Zhihui > > To Unsubscribe: send mail to majordomo@FreeBSD.org > with "unsubscribe freebsd-questions" in the body of the message -- Kent Stewart Richland, WA mailto:kstewart@3-cities.com http://www.3-cities.com/~kstewart/index.html To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?3765537B.6D0BC801>