ALW Workstation Security

Summary of Security Features

The Advanced Laboratory Workstation Project currently provides the following security features to ALW supported workstations as part of your workstation subscription fee:

• Installation of vendor supplied security patches
• Secure system configuration done by knowledgable staff
• Periodic updates of system and application software
• Secure data storage (in AFS)
• Routine monitoring and logging of
  • logins (ftp, telnet and others)
  • password quality
  • system integrity

Tips to Improve Security

As an user of ALW, ALW staff have several suggestions in which you could help us improve security.

• Change passwords regularly (See Selecting Good Passwords) using the kpasswd command.
• Be particularly cautious when using network utilities such as telnet, ftp, and rlogin. When these programs prompt you for your password, they send it in the clear over the network, possibly revealing it to eavesdroppers.
• Remember that giving system:anyuser read or write permission on an Access Control List (ACL) enables over 20 million Internet users around the globe to read or write your files--do not do this unless that is what you intend!
• Periodically reboot workstation to receive the latest security and system updates.

Special Security Notices

• SGI Security Advisory - Serial Port Admin Tool [6 October 1994]
• SGI Security Advisory - InSight Help

Security Documentation

• Selecting Good Passwords
• "Sniffer-proof" procedure for changing ALW passwords

Back up to ALW Home Page