27 Dec
2011
27 Dec
'11
04:07
On 27/12/11 00:35, Claudio Freire wrote:
Usually, you just want to fake or delete the last few records. Deleting is quite simple.
Sure, nothing blocks an attacker that has gained root access to simple rm -rf /var/log/journal/foo.journal
Altering the latest records too, since they haven't yet been backed up.
how ? -- To unsubscribe, e-mail: opensuse-factory+unsubscribe@opensuse.org To contact the owner, e-mail: opensuse-factory+owner@opensuse.org