Could someone help me in the follwoing GNUPG Senario.
Could some one help me in the following senario (This is not for actual implementation, i am just want to study what we should do in the following senario):-
Assuming that i am the administrator of a system that consists of a large number of users and i want to minimise the security risk by eliminating as many set-UID programs as possible. I identify that very few userss on the system actually use GNUPG,however, these users require its continued use. Suggest one way that you could restrict access to the GNUPG program without removing it from the system and without making it operate less securely by removing the set UID Permission bit.
Cheers
John
|