LinuxQuestions.org
Share your knowledge at the LQ Wiki.
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Security
User Name
Password
Linux - Security This forum is for all security related questions.
Questions, tips, system compromises, firewalls, etc. are all included here.

Notices


Reply
  Search this Thread
Old 02-23-2008, 01:42 PM   #1
petroska
LQ Newbie
 
Registered: Feb 2008
Posts: 4

Rep: Reputation: 0
anonymity on multi-user systems


I work on multi-user systems pretty often, mostly in school or in the library, and I just wonder, how anonymous my sessions are?
I mean, is it possible for the root (or perhaps other users) to see what I'm typing in the shell, or see my browsing history? How do I know that they're able to do that? How can I protect myself?

P.S.: I'm curious not paranoid
 
Old 02-23-2008, 02:04 PM   #2
Randux
Senior Member
 
Registered: Feb 2006
Location: Siberia
Distribution: Slackware & Slamd64. What else is there?
Posts: 1,705

Rep: Reputation: 55
Quote:
Originally Posted by petroska View Post
I work on multi-user systems pretty often, mostly in school or in the library, and I just wonder, how anonymous my sessions are?
I mean, is it possible for the root (or perhaps other users) to see what I'm typing in the shell, or see my browsing history? How do I know that they're able to do that? How can I protect myself?

P.S.: I'm curious not paranoid
Your question is not on anonymity, but privacy.

The only way to protect yourself from root on your local system is to use an encrypted tunnel to another system. But you have the same problem there: root on that system can see anything you do. They can see what you type in the shell if they want badly enough or they can just look in your shell's history file. For browsing they can just copy your browser caches and other files which aren't encrypted and even if they're encrypted, while you're using them they're unencrypted to you and to root.

How can you protect yourself? Run your own system and point all your browser caches to encrypted file containers, use SSL for email, encrypt all your email, etc. Then use your local multiuser system to SSH to your own, secure system. You'll have to learn to use console and command line apps because getting a remote X running requires bits you'll not be likely to have access to on a typical shared system. If you set up your own system you'll be able to have secure text browsing and email and messenger etc from console apps.

If you want anonymity you have to be more creative than that. First learn about securing and privacy and then work up to anonymity.

Even paranoids have real enemies.
 
Old 02-23-2008, 02:09 PM   #3
gilead
Senior Member
 
Registered: Dec 2005
Location: Brisbane, Australia
Distribution: Slackware64 14.0
Posts: 4,141

Rep: Reputation: 168Reputation: 168
It is possible to track keystrokes and there are threads here about this. The root user can certainly view your shell history file, your browsing history, etc. (anything at all in fact). The short answer is that you can't stop that access by the root user.

What can you do about it?

Apart from taking RanduxII's advice to protect your privacy:

- Make sure you stick to the acceptable usage policy so they're not going to find anything that will cause you problems;
- Write a script to delete history type files/caches and have it run from ~/.bash_logout
 
  


Reply


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off



Similar Threads
Thread Thread Starter Forum Replies Last Post
Multi operating systems sfzab Linux - Software 1 12-06-2005 06:18 PM
multi boot 3 operating systems eddwed Linux - Newbie 1 02-18-2005 07:09 PM
Question about multi-systems pacifica Linux - General 1 03-10-2004 09:58 AM
3D support of Multi Head Monitor systems MrPeabody Linux - Newbie 0 03-09-2004 12:28 PM
Multi processor operating systems norfarm Linux - General 5 08-21-2002 05:08 PM

LinuxQuestions.org > Forums > Linux Forums > Linux - Security

All times are GMT -5. The time now is 11:00 AM.

Main Menu
Advertisement
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
Open Source Consulting | Domain Registration