Path: utzoo!utgpu!news-server.csri.toronto.edu!cs.utexas.edu!tut.cis.ohio-state.edu!ucbvax!CMR001.BITNET!Jacques_Gelinas
From: Jacques_Gelinas@CMR001.BITNET
Newsgroups: comp.sys.apollo
Subject: RE: security problems
Message-ID: <900627.19434407.014016@CMR.CP6>
Date: 28 Jun 90 00:30:01 GMT
Sender: daemon@ucbvax.BERKELEY.EDU
Organization: The Internet
Lines: 24

> Again, thanks for the info, but lets post it such that only
> Apollo administrators can obtain the details.

NO! I feel compelled, as a simple user, to respond to this.
Here is a true story.
Back in 1976, the ADP director at RMC (Royal Military College)
had all the WATFOR manuals expuged of the flag (pages=n) on the
$JOB card to keep students from using too much paper.
But when i transferred from RMC to CMR (College Militaire Royal)
in 1979, i found with surprise that all the $JOB flags were
explained at great length, in french, on the wall.
Year after year, 150 students transfer from CMR to RMC!!

The moral of this story is:
 You can control your own installation by removing/hiding information,
 but if this information is avalaible elsewhere, watch out.

In ny own modest opinion, the only effective procedure to have
security problems such as this rendered harmless is to post them
on the wall...

(By the way, if you trust the standard Unix password encryption
 and have not heard of the Cryptbreaker workbench, you are just
 like this RMC ADP director, hiding your head in the sand (:-))