Xref: utzoo alt.bbs:2915 comp.unix.sysv386:326 alt.security:1527
Path: utzoo!utgpu!cs.utexas.edu!uunet!rayssd!sud509!heiser@tdw201.ed.ray.com
From: heiser@tdw201.ed.ray.com
Newsgroups: alt.bbs,comp.unix.sysv386,alt.security
Subject: RE: Protecting against downloads
Message-ID: <2412@sud509.ed.ray.com>
Date: 13 Sep 90 15:22:46 GMT
Sender: heiser@sud509.ed.ray.com (Bill Heiser - Unix Sys Admin @ Raytheon Company, Sudbury MA)
Lines: 27

Thanks to all of you who replied so quickly to my question about
protecting my system against unauthorized downloads of binary files.
The overwhelming majority of the responses have told me what I 
already knew -- the (obvious) setting of file modes to be execute-only.
Several people also suggested making the system avaialble only
via a BBS mode.  The remainder basically felt that I shouldn't worry
about this, as it wouldn't really be feasible for someone to build
an entire OS in this manner.

I guess the bottom line is just to make most of the stuff execute-
only, not worry about the rest, and to keep track of who you give
shell access to.

Unless anyone has any new "magic" to share, there's no need to send
any more replies to that message ...   Thanks again for all your 
responses.

Bill


-- 
Work:    heiser@tdw201.ed.ray.com
	 {decuac,necntc,uunet}!rayssd!tdw201!heiser
Home(1): bill%unixland.uucp@world.std.com -or- uunet!world!unixland!bill
	 Public Access Unix Coming Soon!
Home(2): Bill.Heiser@f240.n322.z1.fidonet.org (BBS: 1-508-655-3848)
Other:	 heiser@world.std.com     (Pub. Access Unix)