-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Hi, Alan E. Davis wrote: > Still, it would perhaps be somewhat comforting to be able to disable > EASY access to a "mission critical" system. > > What about further disabling of access to /etc/passwd? Does SELinux > take any such steps? (Ok, I could look into this by reading TFM. > Apologies). > > Alan > Not very sure about SELinux, but RSBAC has in-kernel user management (in it's latest releases >=1.2.5). IIRC SELinux also uses it's own user management beside the unix one (check selinux docs). PS: but the data is still there, so use encryption (enc. partition) ...SKIP... HTH.Rumen -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.2.2-ecc0.1.6 (GNU/Linux) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org
iD4DBQFEQknRNbtuTtsWD3wRAiRcAJUSlX2s64RHOnwM81YVnFGwdKEJAJ0akEt5 WUbbRd2/9Rmwqxwm0ntq6w== =6tVw -----END PGP SIGNATURE----- -- gentoo-user@gentoo.org mailing list
