Complex security mechanism is unsecure
Masataka Ohta
mohta at necom830.cc.titech.ac.jp
Wed Dec 19 22:56:40 AEST 1990
In article <18840 at rpp386.cactus.org>
jfh at rpp386.cactus.org (John F Haugh II) writes:
>>Smaller? It is not my opinion. My opnion is, it is less complex.
>
>Sure, and letting everyone log onto the system as "root" is also
>less complex.
Moreover, with current UNIX, it is as secure as letting everyone log
onto the system as "uucp".
>You have yet to demonstrate how being less complex
>is some assurance of security.
Isn't it obvious that, if all important files are owned only by root,
letting everyone log onto the system as "uucp" becomes secure.
>>This is the news.
>The oldest references that I am aware of predate the 1978 BSTJ
>"UNIX" edition. While it might be "information", it isn't
>"new" information. I would say that it is at least 12 year
>old information.
But, still, you don't understand the importance of simplicity.
>NFS =is= a security hole.
Yes, it is, partly because it is complex.
>Now, if you can come up with a flaw in layered security on a
>properly administered system, then it might be "interesting".
I know it is impossible to properly administrate a system with
layered security such as ACL.
>security on a system with NFS is to remove NFS. Changing all
>the file ownerships to "root" will not save your ass.
Remove NFS? You had better remove your ass.
Masataka Ohta
More information about the Comp.unix.internals
mailing list