Hi. Has anyone noticed the following TSM "feature"?

 Step 1. Take any Unix machine which has been registered as a TSM
 node. Create some directories and subdirectories owned by user Alice
 and only readable by user Alice.

 Step 2. As user "root", make a TSM-backup of the machine.

 Step 3. Start the TSM Client as user Bob. Go to the "Restore"
 window. According to step 1, the Unix permissions don't allow Bob to
 see what directories Alice has, but the TSM Client will happily show
 all of them. (Mind you, I mean the directories only, not files.) So
 if Alice were to have a directory called, say,
 'World_Wide_Conspiration_Plans' or 'Interesting_Job_Offers' or
 'Staff_To_Be_Fired_Next_Week' anyone could misuse TSM to see that.

Doesn't this bother anyone? In our multi-user environment, I find it
unacceptable. The only solution I can think of would be to register
one node per user, but then we would need a license for each user,
even for those several hundred users who only have a mail file and
little else in their $HOMEs.

Any comments?

--
  Manuel Panea                    Tel. +49 89 3299 1133
  Manuel Panea                    Tel. +49 89 3299 1133
  Rechenzentrum Garching          Fax  +49 89 3299 1301
  Postfach 1533                   E-mail: mpd AT rzg.mpg DOT de
  85740 Garching, Germany         http://www.rzg.mpg.de/~mpd