WWC snapshot of http://www.alw.nih.gov/Security/ALW/ALW-security.html taken on Sat Jun 10 17:45:52 1995
ALW Workstation Security
Summary of Security Features
The
Advanced Laboratory Workstation Project
currently provides the following security features to ALW supported workstations as part of your workstation subscription fee:
- Installation of vendor supplied security patches
- Secure system configuration done by knowledgable staff
- Periodic updates of system and application software
- Secure data storage (in AFS)
- Routine monitoring and logging of
- logins (ftp, telnet and others)
- password quality
- system integrity
Tips to Improve Security
As an user of ALW, ALW staff have several suggestions in which you could help us improve security.
- Change passwords regularly (See
Selecting Good Passwords) using the kpasswd command.
- Be particularly cautious when using network utilities such as
telnet
,
ftp
, and
rlogin
. When these programs prompt you for your password, they send it in the clear over the network, possibly revealing it to eavesdroppers.
- Remember that giving
system:anyuser
read or write permission on an Access Control List (ACL) enables
over 20 million
Internet users around the globe to read or write your files--do not do this unless that is what you intend!
- Periodically reboot workstation to receive the latest security and system updates.
Special Security Notices
Below is a series of security notices which may able to you. Please read the relevent notices and follow any instructions provided in the advisory.
[10 August 1994]
Security Documentation
Comments to www-alw@alw.nih.gov
Back up to ALW Home Page