Comment by gusgus01
1 day ago
At least at places I've worked, terminating the logger would cause a security incident, and the central logging service have some general heuristics that should trigger a review if a log is filled with junk. Of course with enough time and root, there's ways to avoid that. But that's also usually why those with root are limited to a small subset of users, and assuming root usually requires a reason and is time gated.
> But that's also usually why those with root are limited to a small subset of users, and assuming root usually requires a reason and is time gated.
I mean, if we were to apply the equivalent from the article, then no they would not have had a reason nor been time gated.