--VS++wcV0S1rZb1Fb
Content-Type: text/plain; charset=us-ascii
Content-Disposition: inline
Content-Transfer-Encoding: quoted-printable

On Thu, Sep 04, 2003 at 01:16:38PM +0200, Martin Konold wrote:
> Am Thursday 04 September 2003 12:32 pm schrieben Sie:
> > > FYR: Neither SELinux nor ACLs prevent abuse from a malicious root use=
r.
> >
> > In what way? If I deny the root user access to the files in question, as
>=20
> The root user may simply reeinstall the machine without your knowledge.=
=20

Lock it down enough, and that implies physical access, which trumps absolut=
ely
everything.

--=20
Daniel Stone                                              <daniel@fooishbar=
.org>
http://www.debian.org - http://www.kde.org - http://www.freedesktop.org
"Configurability is always the best choice when it's pretty simple to imple=
ment"
  -- Havoc Pennington, gnome-list

--VS++wcV0S1rZb1Fb
Content-Type: application/pgp-signature
Content-Disposition: inline

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.0.6 (GNU/Linux)
Comment: For info see http://www.gnupg.org

iEYEARECAAYFAj9XIk0ACgkQcPClnTztfv0xUACfSV6WFWPdRvnv470EdZEeZ/JZ
TIYAnjRiQ95OCR4HOe0PWW22ow4N7SN9
=hwXY
-----END PGP SIGNATURE-----

--VS++wcV0S1rZb1Fb--