home *** CD-ROM | disk | FTP | other *** search
- Path: sparky!uunet!ogicse!hp-cv!sdd.hp.com!hpscdc!cupnews0.cup.hp.com!hesh
- From: hesh@cup.hp.com (Chris Steinbroner)
- Newsgroups: comp.sys.hp
- Subject: Re: HP 9000/370, no root password!
- Message-ID: <Bt901J.KE4@cup.hp.com>
- Date: 19 Aug 92 20:39:18 GMT
- Article-I.D.: cup.Bt901J.KE4
- References: <1992Aug19.194914.18855@news.th-darmstadt.de>
- Sender: news@cupnews0.cup.hp.com
- Reply-To: Chris Steinbroner <hesh@cup.hp.com>
- Organization: HP-UX Kernel Lab, Cupertino, CA
- Lines: 29
- X-Newsreader: Tin 1.1.3 PL5
-
-
- Clemens Misch (misch@rbhp90.rbg.informatik.th-darmstadt.de) writes:
- : I'd like to see a sort of password in the bootrom.
- :
- : I think this should be done ASAP. HPUX may be certified C2 but the
- : system consisting of bootrom and HPUX is certainly not (IMO)
-
- HP-UX is not "certified C2." Standard HP-UX has not undergone an
- evaluation for C2. HP does, however, have a product called "BLS"
- (B-Level System), based on SecureWare's SMP+ (*). BLS is currently
- under evaluation.
-
- As a side note, orange book security does not address physical security.
- It is assumed that the customer affords appropriate physical security
- for the level of security expected by the software.
-
- good@gdwest.gd.com (David L. Good) writes:
- : We have a network of ~60 350s, and I'd hate to have
- : users be able to be superuser anytime they want just by cycling power on
- : a workstation!
-
- Face it, if someone has physical access to your machine, all bets are off.
- Software hacks do not provide assurance of any kind.
-
- Not speaking for Hewlett-Packard Company,
-
- -- hesh
-
- * SMP+ is a trademark of SecureWare, Inc.
-