Path: news.eternal-september.org!eternal-september.org!feeder3.eternal-september.org!fu-berlin.de!uni-berlin.de!individual.net!not-for-mail
From: "Carlos E.R." <robin_listas@es.invalid>
Newsgroups: comp.os.linux.misc
Subject: Re: More systemdCrap
Date: Wed, 12 Mar 2025 22:12:28 +0100
Lines: 18
Message-ID: <su99alxpvk.ln2@Telcontar.valinor>
References: <vqn41l$1efis$1@dont-email.me> <vqna2v$1fks2$1@dont-email.me>
 <vqnbm7$1g56j$1@dont-email.me> <gjo3alxe38.ln2@Telcontar.valinor>
 <vqnja1$1hrbi$1@dont-email.me> <rq44alxv4u.ln2@Telcontar.valinor>
 <20250310152856.00004b5a@gmail.com> <vqoqfk$1s78c$3@dont-email.me>
 <op.228vudbda3w0dxdave@hodgins.homeip.net> <vqpinq$210sd$5@dont-email.me>
 <vqpm42$2221u$1@dont-email.me> <20250311085926.000056b7@gmail.com>
Mime-Version: 1.0
Content-Type: text/plain; charset=UTF-8; format=flowed
Content-Transfer-Encoding: 7bit
X-Trace: individual.net +0kws8eeHWCiIUfI7MQTbgMAcnni1s2BYK8SK94bzJPlN9Snrp
X-Orig-Path: Telcontar.valinor!not-for-mail
Cancel-Lock: sha1:ppVOL99/QFBPqVx++xoF7CS3YQU= sha256:GoMmN3S4yWZJCMB9ruyF+tR6mfZwULN/iPm1KgB4jmE=
User-Agent: Mozilla Thunderbird
Content-Language: es-ES, en-CA
In-Reply-To: <20250311085926.000056b7@gmail.com>

On 2025-03-11 16:59, John Ames wrote:
> On Tue, 11 Mar 2025 15:50:25 +0000
> Pancho <Pancho.Jones@protonmail.com> wrote:
> 
>> Carlos has already suggested that there might be a method to
>> cryptographically sign the logs, making alterations very difficult,
>> even to a privileged user.
> 
> Perhaps there is - but, as has already been pointed out, if journalctl
> can delete records by date, it is certainly *possible* to delete
> records by source. Any encryption that does not prevent the former
> cannot prevent the latter.

It can delete by date, but only from the distant end of the log, not on 
the middle.

-- 
Cheers, Carlos.