What makes one problem more significant
Doug Gwyn
gwyn at smoke.brl.mil
Thu May 16 08:26:14 AEST 1991
In article <1991May14.225158.8265 at PacBell.COM> jmcarli at PacBell.COM (Jerry M. Carlin) writes:
> 1. remote access without knowing id/password.
> 2. getting access to other ID's especially root.
> 3. the rest
I'm not sure I quite understood these categories. Are they the same as:
1. secure against attack by outsiders
2. secure against attack by insiders
3. secure against accidents
In these terms, we generally consider category #2 to be something that
can be dealt with by administrative action, and category #3 is expected
to be handled by the operating system. The login password system ought
to be sufficient to cope with category #1; however, with the advent of
.rhosts and NFS there are a lot of new holes to plug.
I think Dan was going after a problem in category #2, which I don't
find particularly interesting.
More information about the Comp.unix.wizards
mailing list