From: Richard Gooch <rgooch@xxxxxxxxxxxxxxx>
> Robert Siemer writes:
> I'm thinking more about public workstations in a research lab.
>
> > > The sysadmin does not want to be bothered by user requests "can you
> > > please give me access to the tape drive so I can back up my data?".
> >
> > Backup should be the task of the admin!
>
> Not if you have lots and lots of data. The admins backup home areas
> and software, but data is left to the users, who know what is worth
> backing up and what is not.
>
> > Why should I and all the other "real" sysadmin be _bothered_ by
> > insecure defaults? It's already hard enough to double check every
> > step to _stay_ in a secure system...
>
> Why should I and all the other real sysadmins who have hundreds of
> users be *bothered* with giving tape access every time it's asked
> for?
> In any case, I don't want to argue about this. We have different
> perspectives. Let's agree to disagree.
I'm sorry for being so aggressive. - I see - your scenario is real.
But how do you protect tape users from other users accessing their
tape during backup (... or just before)?
Regards,
Robert
|