<div dir="ltr">Thanks Sven, I really appreciate your considerations, especially about the encryption of the SMTP traffic.<div><br></div><div>I will test Mandatory Access Control (MCS), like Se-linux(YES, I know that NSA wrote it) or Apparmor for instance, and customising SUDO: <a href="http://pubs.gpaterno.com//2009/protecting-confidential-files-selinux-2009.pdf">http://pubs.gpaterno.com//2009/protecting-confidential-files-selinux-2009.pdf</a></div>
<div><br></div><div>Sorry for not being specific from the beginning, but this research is for a government e-mail system, and we really need to ensure that even administrators cannot access the messages, encrypted or not.<br>
</div><div class="gmail_extra"><br><br><div class="gmail_quote">On 1 February 2014 07:38, Sven Schwedas <span dir="ltr"><<a href="mailto:sven.schwedas@tao.at" target="_blank">sven.schwedas@tao.at</a>></span> wrote:<br>
<blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex">Given that a physical root can bypass any and every ACL, encrypting<br>
messages (upon receiving, e.g.) is the only remotely plausible way to<br>
prevent access.<br>
<br>
And even then the admin could sniff all SMTP traffic and copy messages<br>
before encryption, so you'd need to monitor him anyway.<br>
<br>
<br>
<br>
Why again does someone you trust so little have root access to anything<br>
more sensitive than a calculator? ;-)<br>
<div><div class="h5"><br>
On 2014-01-31 17:47, Fabio S. Schmidt wrote:<br>
> Hi Dan ! Thanks for the answer !<br>
><br>
> I'm trying to prevent local access from a physical administrator. Even<br>
> if looged as root should be impossible to read the messages on the Cyrus<br>
> partitions. Other emails stores that I have dealt with also stores the<br>
> messages in files.<br>
><br>
> Blackman and Goetz, Thanks for the reply, but my problem is that not all<br>
> messages will be encrypted at the source. AND EVEN if the message is<br>
> encrypted we want to prevent the access from a physical administrator.<br>
><br>
><br>
><br>
</div></div><div class="im">> ----<br>
> Cyrus Home Page: <a href="http://www.cyrusimap.org/" target="_blank">http://www.cyrusimap.org/</a><br>
> List Archives/Info: <a href="http://lists.andrew.cmu.edu/pipermail/info-cyrus/" target="_blank">http://lists.andrew.cmu.edu/pipermail/info-cyrus/</a><br>
> To Unsubscribe:<br>
> <a href="https://lists.andrew.cmu.edu/mailman/listinfo/info-cyrus" target="_blank">https://lists.andrew.cmu.edu/mailman/listinfo/info-cyrus</a><br>
><br>
<br>
--<br>
</div>Mit freundlichen Grüßen, / Best Regards,<br>
Sven Schwedas<br>
Systemadministrator<br>
TAO Beratungs- und Management GmbH | Lendplatz 45 | A - 8020 Graz<br>
Mail/XMPP: <a href="mailto:sven.schwedas@tao.at">sven.schwedas@tao.at</a> | <a href="tel:%2B43%20%280%29680%20301%207167" value="+436803017167">+43 (0)680 301 7167</a><br>
<a href="http://software.tao.at" target="_blank">http://software.tao.at</a><br>
<br>
<br>----<br>
Cyrus Home Page: <a href="http://www.cyrusimap.org/" target="_blank">http://www.cyrusimap.org/</a><br>
List Archives/Info: <a href="http://lists.andrew.cmu.edu/pipermail/info-cyrus/" target="_blank">http://lists.andrew.cmu.edu/pipermail/info-cyrus/</a><br>
To Unsubscribe:<br>
<a href="https://lists.andrew.cmu.edu/mailman/listinfo/info-cyrus" target="_blank">https://lists.andrew.cmu.edu/mailman/listinfo/info-cyrus</a><br></blockquote></div><br><br clear="all"><div><br></div>-- <br><pre><font face="'courier new', monospace">My best regards,
Fabio Soares Schmidt
Linux Professional Institute - LPIC-3
Microsoft Certified Technology Specialist: Active Directory</font>
</pre>
</div></div>