Re: Apple's planned appoach to permissions on movable filesystems

[Brian Somers]

[.....]
>     Revisiting security now...
> 
>     A provision for public-key encryption of the data held on the disk (as
>     well as the id itself) would be useful.  Just encrypting the ID alone
>     would not be useful.
> 
>     The distinction would then shift away from whether the media is removable
>     or not (it would no longer matter as much) and instead assume that no
>     unencrypted data can ever be trusted and encrypted data can be trusted
>     insofar as the ID can be trusted.
[.....]

Too hard !  I would have thought the only practical way would be to 
digitally sign the contents of the disk and then to validate the 
signature before mount time.

IMHO this is nothing to do with the ability to mount removable media. 
If the admin wants this level of paranoia (certainty ?) then {,s}he 
can do it h{im,er}self... at the end of the day, root decides if the 
media is ``local'', not the media.

-- 
Brian <[EMAIL PROTECTED]>                        <[EMAIL PROTECTED]>
      <http://www.Awfulhak.org>                   <[EMAIL PROTECTED]>
Don't _EVER_ lose your sense of humour !          <[EMAIL PROTECTED]>




To Unsubscribe: send mail to [EMAIL PROTECTED]
with "unsubscribe freebsd-hackers" in the body of the message