[Security_sig] 10/14 Conf. call minutes
chrisw at osdl.org
Thu Oct 21 14:38:10 PDT 2004
* Jon Masters (jonmasters at gmail.com) wrote:
> On Thu, 14 Oct 2004 11:47:32 -0700, Chris Wright <chrisw at osdl.org> wrote:
> > Ed: Access to backup tapes has information access which is normally protected
> > via security of live system, but could be used in test systems, etc.
> > Chris: Physical access to the machine is clearly required.
> Can you clarify what's being said there please? Seems like a standard
> "but people might abuse physical access" type of non-argument.
Discussion was about backup tapes being a route for information leak,
such a threat is typically mitigated with physical security. Ed points
out that sensitive data in the system falls under system protection,
while backup data doesn't necessarily. For example, it could be used
to deploy in a test bed with potentially live but stale customer data
without same system protection.
Linux Security Modules http://lsm.immunix.org http://lsm.bkbits.net
More information about the security_sig