Unix network security (was "CERT Internet Security Advisory")
William LeFebvre
phil at delta.eecs.nwu.edu
Sat Aug 19 06:58:41 AEST 1989
In article <4614 at thor.acc.stolaf.edu> mike at thor.stolaf.edu (Mike Haertel) writes:
>Clearly,
>systems should be designed to facilitate peoples' preferred ways of
>working.
They should also be designed to insure a certain amount of security to
help guarantee their integrity for the legitimate users.
>It is better to have to occasionally find and deal with a bad
>guy than to cripple everyone just on the offhand chance that a bad guy
>might cause trouble.
The problem with that thinking is that by the time you find out the
bad guy is being bad, it's too late. We were REAL lucky that Morris's
worm wasn't designed to do any harm, removing files at random for
example. If it had, then the results would have been absolutely
catastrophic.
What you're saying is: I don't want this lock on my door, because it's
better to catch the burglar after he has broken in and stolen/destroyed
everything than to force myself to lock and unlock the house every day
just on the offhand chance that a bad guy might cause trouble.
William LeFebvre
Department of Electrical Engineering and Computer Science
Northwestern University
<phil at eecs.nwu.edu>
More information about the Comp.unix.wizards
mailing list