On 21/06/15 00:06, Ken Schneider - openSUSE wrote:
On 06/18/2015 05:22 PM, Lew Wolfgang wrote:
On 06/18/2015 01:31 PM, jdd wrote:
Le 18/06/2015 22:28, I. Petrov a �crit :
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1
Hello Lew,
Interesting question indeed. In my opinion however it is not possible at all (especially for the root user). I'm interested what the others think about this though.
depends of what one want to do with the file, switching off an usb disk can prevent the file from being removed, even by root, be it's also unavailable for the others
Perhaps I should have included the original requirement. Here it is:
"The operating system must enforce dual authorization for movement and/or deletion of all audit information, when such movement or deletion is not part of an authorized automatic process."
Damn pointy hair bosses not know the difference between reality and fantasy.
But you know what they asked for is not really a fantasy but a legitimate request for security of data. If you have a safety deposit box at a bank you need two (2) keys to open that box - one key used by "The Keeper of the Boxes" and the other which you have. The request made to Lew is nothing more than trying to implement the same requirement to data held in files located on computers (be they servers or otherwise). BC -- Using openSUSE 13.2, KDE 4.14.6 & kernel 4.0.5-4 on a system with- AMD FX 8-core 3.6/4.2GHz processor 16GB PC14900/1866MHz Quad Channel RAM Gigabyte AMD3+ m/board; Gigabyte nVidia GTX660 GPU -- To unsubscribe, e-mail: opensuse+unsubscribe@opensuse.org To contact the owner, e-mail: opensuse+owner@opensuse.org