|
List Info Thread: Re: encrypted pagestore?
[1-2]
|
||||||||||||||||||||
|
about | contact Other archives ( Real Estate discussion Medical topics ) |
||||||||||||||||||||
Re: encrypted pagestore? |
|
List Info Thread: Re: encrypted pagestore?
[1-2]
|
||||||||||||||||||||
|
about | contact Other archives ( Real Estate discussion Medical topics ) |
||||||||||||||||||||
gmail.com wrote:
> I think there's also a threat situation where
> non-root users on the server
> can read files in wiki.d/, e.g. 'apache'. In this
> case, having the files
> encrypted could help, although key management is
> still a problem.
Sure, but I would just classify that as the same
threat (or maybe less of) as #2:
2) who can sniff your ftp password and therefor even
access the files once they are on the server (sounds
like yes also?)
A local use might be even less of a threat than
someone who has your ftp password. The local user can
likely only see files that you give world readable
permissions to, the ftp user can see everything you
can see.
-Martin
____________________________________________________________
________________________
Be a better friend, newshound, and
know-it-all with Yahoo! Mobile. Try it now. 