From: Dave Hart <davehart@microsoft.com>
Date: Fri, 12 Nov 93 10:19:32 PST
To: sameer@uclink.berkeley.edu
Subject: RE: Mounting a "Secure" filesystem in UNIX
Message-ID: <9311121819.AA25880@netmail.microsoft.com>
MIME-Version: 1.0
Content-Type: text/plain


-----BEGIN PGP SIGNED MESSAGE-----

| From: Sameer  <netmail!sameer@uclink.berkeley.edu>
|
| 	I was wondering if it was possible to mount a "secure"
| filesystem/partition using Linux or some other free version of UNIX,
| so that it's inaccessible if logged in remotely, but accessibly when
| logged in locally.

I know you want to do this with UNIX, but Windows NT allows you do this 
quite nicely.  One of the "groups" of users is INTERACTIVE, another is 
NETWORK.  You can specifically prohibit network users from accessing a 
file by adding "NETWORK - No Access" to the p
ermissions list in File Manager.  I do this with secring.pgp and 
secring.bak, on top of the restriction which allows only me to access 
the file.  So even if someone guesses my password, they can't snoop on 
my private key except by physically being at my machi
ne.

== DaveHart@microsoft.com == Opinions are mine, not Microsoft's. ==

-----BEGIN PGP SIGNATURE-----
Version: 2.3a

iQCVAgUBLOPOM+mFbAJWprWtAQFihAQAoHfErGrFffPkJHeSdStjH8y+zHUAPv8I
b9QP85l/jN545PKDB9iRBpqc6708DeXoR7Brm6vydElYDlvShzfpotcUxHtOO9bH
vCGXd/lFKyF3d81Rhckn2DGqH9ab1yw587ofXfAKKzdt3tLpYDCLUdz8eMGLIZCD
ILPaiKYryPI=
=Nnzg
-----END PGP SIGNATURE-----