On Tue, 2008-12-30 at 10:31 -0500, erik quanstrom wrote: > > You have to ensure that I can't dial it and authenticate with > > factotum. It's a mess!) > > how would that attack work? > > supposing that you have a fully jailed process. if it has a connection > to the fileserver, which does do security by user id, the jailed process > can still mess with you. say by deleting all your files. > > i think the real question here is why don't you trust your > processes? is it because someone else is running them
That was, essentially, my original question. Nathaniel, could you, please answer it? Thanks, Roman.
