gov't certified "secure" Unix
J.ZIEGLER
ziegler at lznv.ATT.COM
Tue Aug 1 00:33:22 AEST 1989
In article <574 at mmlai.UUCP>, burzio at mmlai.UUCP (Anthony Burzio) writes:
> Security on a UNIX system should be utterly optional. At first you
> should get a normal system without security from distribution. Later,
> you could then run a program, say called "Big Brother", that would
> modify things to add security...
>
Actually, a secure computer system has to be secured at all times
during its life, including installation and maintenance as well as
normal operation. To do this, it would probably be best to have the
secure system on the distribution medium, and have a normal
installation put the secure system in place. Then a SEPARATE medium
would have an "un-Big Brother" utility on it, that would turn off
all the special security features. This way a secure system can be
distributed and installed, with fewer opportunities for the system
to be compromised. Those who don't want the extra security will
have a little extra work to do at installation, but at least that's
only a one-time problem.
I do agree that all security should be optional.
Joe Ziegler
att!lznv!ziegler
More information about the Comp.unix.questions
mailing list