Re: Tough question for oracle DBAs/Solaris Admins. Log shipping.

On Sat, 02 Sep 2006 00:35:13 GMT
Ningi <ningi_at_EGGSANDSPAMblueyonder.co.uk> wrote:

> Frank Cusack wrote:
> <snip>
>
> m UNTRUSTED employees, not eliminating trust from the system.
> >
> > No auditor will balk at not having immutable files as long as only
> > trusted employees are in the position to undetectably alter data.
>
> Yes they will. You stand no chance of meeting SEC 17a-4 if ANYBODY
> can alter the data.

Then SEC 17a-4 cannot be met, unless the data is placed on a write-once medium and said medium is stored in an inviolable location (or has such characteristics that it cannot be substituted).

But wait - how do you(*) know that the program that writes the data to the write-once medium doesn't alter it whilst writing?

As usual, the law is an ass.

(*) you = an auditor who cannot read program source code and compile it himself, and execute on a system he has built from the ground up so that he knows it's trusted. And even if the auditor could do all this, why trust the auditor?

-- 
Stefaan A Eeckels
-- 
You rarely have time for everything you want in this life, so you
have to make choices.  And hopefully your choices can come from a
deep sense of who you are.                         -- Fred Rogers