More comments about UNIX Security.
Steven M. Haflich
smh at mit-eddi.UUCP
Sat Jun 25 22:35:28 AEST 1983
OS security is such a challenging intellectual problem (like chess) that
its public discussion ought to be justified for that reason alone! More
practically, everyone on the net should realize that it is almost
impossible to restrict information flow. Three people can keep a secret
if two of them are dead, as the old saying goes.
One wizard at a site receives the security mailing, properly passes it on
to other wizards, but all it takes then is for one of them to leak the
info innocently of not to unauthorized readers. (E.g., I have friends
at a university site, out of state and not on the net, who could
reasonably qualify for distribution. What if I innocently pass the
stuff onto them, but they incorrectly understand the need for security.)
If you want to discuss security issues, best to do it in public. At the
very least, assume the discussion IS public, despite best efforts to the
contrary.
More information about the Comp.unix.wizards
mailing list