Xref: utzoo alt.security:1513 alt.bbs:2905 comp.unix.sysv386:286
Path: utzoo!utgpu!cs.utexas.edu!uunet!rayssd!sud509!heiser
From: heiser@sud509.ed.ray.com (Bill Heiser - Unix Sys Admin)
Newsgroups: alt.security,alt.bbs,comp.unix.sysv386
Subject: Protecting against downloads
Message-ID: <22@tdw205.ed.ray.com>
Date: 12 Sep 90 16:55:36 GMT
Sender: heiser@sud509.ed.ray.com (Bill Heiser - Unix Sys Admin @ Raytheon Company, Sudbury MA)
Organization: Raytheon Company, Equipment Division, Sudbury MA
Lines: 25


A *ix sysop I communite with recently told me that he'd caught one of
his "shell-access" users downloading *ix binaries.  Since I'm getting
ready to set up my system for public access, this concerns me.  How
do you all who run public-access systems protect yourselves against this
kind of thing?  If it went on for long enough, the person could get 
himself an entire OS for free!!

As far as I can see, we either have to trust the users that we give
shell access to, or make kermit/sz, etc unavailable to them.  I guess
we could just make downloads only available thru the "bbs", rather than
from the shell ...

Anyone else have any ideas on this?  How do you all deal with this?

Bill


-- 
Work:    heiser@tdw201.ed.ray.com
	 {decuac,necntc,uunet}!rayssd!tdw201!heiser
Home(1): bill%unixland.uucp@world.std.com -or- uunet!world!unixland!bill
	 Public Access Unix Coming Soon!
Home(2): Bill.Heiser@f240.n322.z1.fidonet.org (BBS: 1-508-655-3848)
Other:	 heiser@world.std.com     (Pub. Access Unix)