funsec mailing list archives

Re: It's ... SUPER-USER!

From: Valdis.Kletnieks () vt edu
Date: Fri, 30 Aug 2013 19:44:54 -0400

On Fri, 30 Aug 2013 15:20:52 -0700, "Rob, grandpa of Ryan, Trevor, Devon & Hannah" said:

According to the NSA, "NOBODY could stop Snowden  he was A SYSADMIN!"


If they were using SELinux with the MLS policies, even as sysadmin he couldn't
have done that stuff without being detected, because the sysadmin user and the
audit/security user are two separate roles, and sysadmin can't touch the
audit logs nor can they su to 'audit'.

Maybe they should go talk to the people who developed SELinux.

Oh wait...

Attachment: _bin
Description:

_______________________________________________
Fun and Misc security discussion for OT posts.
https://linuxbox.org/cgi-bin/mailman/listinfo/funsec
Note: funsec is a public and open mailing list.

Current thread:

It's ... SUPER-USER! Rob, grandpa of Ryan, Trevor, Devon & Hannah (Aug 30)
- Re: It's ... SUPER-USER! Stephanie Daugherty (Aug 30)
- Re: It's ... SUPER-USER! Valdis . Kletnieks (Aug 30)
  - Re: It's ... SUPER-USER! Joel Esler (Sep 02)