>>And finding out passwords, eh? I don't mean just login, but PGP, for
>>instance. I sure wouldn't appreciate my SysAdmin doing that to me.
Besides, I have to mention...I might be slightly biased, being a sysadmin
myself, I'd say maybe 99% of the sysadmins are honest and ethical. In the
rare, off chance that you actually come across someone that is less than
honest and ethical; and he/she has privs, then you ultimately lose because
with privileges, he/she can modify the system to do any nefarious deed(s)
he/she wants it to. In that case, the safest thing would be to 1) report
him/her or 2) not use the system at all.
Think about it... what's preventing a corrupt sysadmin with privs from
modifying pgp, for instance?
Thank goodness at the last site (and is true to some extent to many other
places) I've had the fortune of working with friendly, honest, and ethical
co-workers. Besides, we all signed agreements against this kind of thing,
and I've seen my top supervisor fire people without a second thought upon
*any* discovery of any no-no deeds by computing people in a position of trust.
In fact, the people (one was a new employee of mine, sad to say) were indeed
subject to prosecution - at least on the federal level.
Securest machine (relatively speaking) that you can trust is a machine that
only you have privs on. All others, it boils down to faith, and some decency,
But of course, this is kinda off the point. Back to our regularly scheduled
Linux discussion. :-)