Xref: utzoo comp.sys.ibm.pc:38506 comp.protocols.tcp-ip:9291 comp.protocols.tcp-ip.ibmpc:1940
Path: utzoo!attcan!utgpu!jarvis.csri.toronto.edu!mailrus!uunet!mcsun!cernvax!cgch!whna
From: whna@cgch.UUCP (Heinz Naef)
Newsgroups: comp.sys.ibm.pc,comp.protocols.tcp-ip,comp.protocols.tcp-ip.ibmpc
Subject: The PC as a trusted client in a TCP/IP network
Keywords: PC, TCP/IP, security.
Message-ID: <907@cgch.UUCP>
Date: 20 Nov 89 17:50:39 GMT
Sender: news@cgch.UUCP
Organization: WRZ, CIBA-GEIGY Ltd, Basel, Switzerland
Lines: 20

Hello system integrators,
what could be done to turn existing personal computers (industry standard)
into real trusted clients on a TCP/IP network? What activities would be
required at the organizational and at the technical level?
 - Would it be necessary to disable/remove the floppy disk unit?
 - Would it be a good idea to boot the PC over the network interface
   (learning IP-address, loading DOS, etc.)?
   Did anyone implement this already (e. g. using BootP, etc.)?
 - Would it be better to choose an application gateway solution, i. e.
   implementing some proxy-Telnet, -FTP, -NFS, -etc. agent on a departemental
   host which is accessed by corresponding PC clients?
 - etc.
Any comments, suggestions, pointers to solutions, etc. are appreciated. I will
summarize to the net, so you could e-mail instead of followup-posting to save
News bandwidth.
Thanks, and best regards,
Heinz Naef, c/o CIBA-GEIGY AG, R-1045.3.37, P.O.Box, CH-4002 Basel, Switzerland
  UUCP:     cgch!whna
  Internet: whna%cgch.uucp@uunet.uu.net              Phone: (+41) 61 697 26 75
  BITNET:   whna%cgch.uucp@cernvax.bitnet            Fax:   (+41) 61 697 32 88