Protecting message files acess even from root
Adam Tauno Williams
awilliam at whitemice.org
Sun Feb 2 09:03:21 EST 2014
On Sat, 2014-02-01 at 11:38 -0200, Fabio S. Schmidt wrote:
> Thanks Sven, I really appreciate your considerations, especially about
> the encryption of the SMTP traffic.
> I will test Mandatory Access Control (MCS), like Se-linux(YES, I know
> that NSA wrote it) or Apparmor for instance, and customising SUDO:
> http://pubs.gpaterno.com//2009/protecting-confidential-files-selinux-2009.pdf
> Sorry for not being specific from the beginning, but this research is
> for a government e-mail system, and we really need to ensure that even
> administrators cannot access the messages, encrypted or not.
Please come back with what you discover. This is an interesting
question.
More information about the Info-cyrus
mailing list