[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

LispM security

To: grossman@eola.cs.ucf.edu
Subject: LispM security
From: barr@BBN.COM
Date: Fri, 21 Dec 1990 17:46:18 -0500
Cc: slug@ai.sri.com
In-reply-to: David Grossman's message of Fri, 21 Dec 90 21:49:48 GMT <9012212149.AA01774@eola.cs.ucf.edu>
Sender: barr@BBN.COM

It sounds like you may be under some pressure that says, "Why can't
Symbolics machines be made secure like our Sun workstations?"

The only meaningful answer is that they are already as secure as Sun
workstations.  Everyone knows how to hit L1-A on a Sun console, boot
it up in single-user mode with ">boot vmunix -s", and proceed to edit
/etc/passwd.  Neither Symbolics nor Sun (nor DEC, nor anyone) is
likely to change things to prevent you from easily compromising a
system from its console.  Only physical security (locking up the
console) is useful in these cases.

That said, you should look into secure subnets, and the disabling of
network services.  It *is* possible to attain some degree of security
on the network interface with Symbolics, Vaxen, Suns, and the rest.
But you may not like sacrificing ease-of-use to get it.  Where is the
perfect balance of security with ease-of-use?  That is the Holy Grail.
For the sake of your Lisp Users, think twice before you make their
LispMs as hard to use as a Unix box!

I hope this helps.  Have Happy Holidays, and a successful New Year.
                            ______
                            HUNTER

Follow-Ups:
- LispM security
  - From: SWM@SAPSUCKER.SCRC.Symbolics.COM (Scott McKay)

References:
- [no subject]
  - From: grossman@eola.cs.ucf.edu (David Grossman)

Prev by Date: [no subject]
Next by Date: LispM security
Previous by thread: [no subject]
Next by thread: LispM security
Index(es):
- Date
- Thread