home *** CD-ROM | disk | FTP | other *** search
- Path: sparky!uunet!spool.mu.edu!agate!ucbvax!UNODE2.NSWC.NAVY.MIL!SYSTEM_JB
- From: SYSTEM_JB@UNODE2.NSWC.NAVY.MIL ("SYSTEM SUPPORT")
- Newsgroups: comp.os.vms
- Subject: Another reply for: SECURITY PROBLEM FOR GURUS
- Message-ID: <9301060105.AA08669@ucbvax.Berkeley.EDU>
- Date: 5 Jan 93 21:58:00 GMT
- Sender: daemon@ucbvax.BERKELEY.EDU
- Distribution: world
- Organization: The Internet
- Lines: 38
-
- !From: <UNODE2::WINS%"agate!spool.mu.edu!enterpoop.mit.edu!eru.mt.luth.se!l
- !Date: 02-JAN-1993 20:15
- !Subject: Re: HELP!!! Security problem for gurus.
- !
- !In article <1992Dec10.095514.1337@galaxy.gov.bc.ca> ewilts@galaxy.gov.bc.ca (Ed Wilts) writes:
- !>In article <B1FB21FFA27F004AEF@imimnvx.irfmn.mnegri.it>, PSI%ITAPAC.22800002::PITCLS::ADRIANO@imimnvx.irfmn.mnegri.it (Adriano Santoni) writes:
- !>>
- !>> I need to avoid certain people to scan a directory of mine. This
- !>> could seem a very trivial issue, if it was not for the following:
- !>>
- !>> o Some users of mine have (and need to retain) *ALL* privileges
- !>As long as they are privileged, there is absolutely nothing you can do to stop
- !>them from accessing your data. If they so chose, they could even use your
- !>userid to do it.
- !>
- !>If you can't trust them with the privileges, don't give them out. Simple as
- !>that.
- !
- !Oh, yes, there is something he can do. Use SE-VMS, the secure version of
- !VMS. But then the machine will probably be unusable, unadministrable and
- !slow. But secure.
-
- What about UPGRADE, DOWNGRADE (specific to SE-VMS) and BYPASS privileges???
- If you have all privileges you are GOD to that system. Of course SE-VMS does
- make your system almost as usless as UN*X, but at least with security. o-)
-
- ------------------------------------------------------------------------------
-
- "Why don't Pygmys eat clowns?? Because they taste funny"
-
-
- Jon Baker
- Naval Surface Warfare Center
- Code N23A
- Dahlgren, VA 22448
- 703-663-8705
-
-
-
