On Mon, Mar 17, 2008 at 08:33:22PM -0700, Scott Rotondo wrote: > Ken said in another email that rmt does not run with privilege, acquired > via setuid or pfexec. Can I also assume that there is no daemon running > as root? > > Assuming that the answer is yes, and rmt really is unprivileged, there > seems to be no need to audit. However, it would also seem that the > access control system described in /etc/default/rmt does absolutely > nothing. Are we sure we understand how this program works?
If rmt were used as a user shell or SSH forced command, then I think one might want it to audit because its access controls could not be circumvented by the user. But that means making sure that it runs with the audit privilege. I'd be happy with it not auditing at all. Nico --
