[redhat-lspp] Re: Separation between secadm and sysadm problem????

[Steve Grubb]

On Tuesday 14 March 2006 17:35, Klaus Weidner wrote:
> It's ok, LSPP and RBAC still assume trustworthy admins. There should be
> some reasonable audit records about these actions though, and as you say
> the documentation should point out the enforcement limitations.

I guess we are wondering about how to split up the access. Is there any 
guidance on that or just do whatever 'cause it doesn't matter? How things get 
split up will affect the documented procedures.

-Steve