[ale] Write permission

Vernard Martin vernard at gmail.com
Wed May 25 08:20:24 EDT 2016


On 5/16/2016 6:18 PM, Jim Kinney wrote:
>
> Happily, this isn't DoD. Just HIPPA. Must strike a balance between 
> absolute security (standalone system with no networking in a room with 
> armed guards will to shoot on site) and usability (woo! Free-for-all 
> and everyone has root - NOT ON MY WATCH!).
>> Either you need security or you don't.
>
> Need security that prevents accidental relocation and makes deliberate 
> abuse difficult but most importantly, traceable back to the now 
> expelled/fired idiot.
Auditd can be configured to give you enough info to trace who/what is 
going on. Add sudo logs to that and you can probably track an offender 
quite fast.

Or you can use the crappy EASH package that does all this and is 
absurdly old and not supported by the developer anymore. But it *does* 
work.

V



More information about the Ale mailing list