Path: utzoo!utgpu!news-server.csri.toronto.edu!cs.utexas.edu!execu!sequoia!rpp386!jfh From: jfh@rpp386.cactus.org (John F Haugh II) Newsgroups: comp.unix.sysv386 Subject: Re: SCO doesn't sell UNIX Message-ID: <18797@rpp386.cactus.org> Date: 9 Dec 90 21:13:36 GMT References: <2755CECE.4502@tct.uucp> <2332@cdin-1.UUCP> <1990Dec1.223750.16286@NCoast.ORG> <275A9A50.3F3F@tct.uucp> <2341@tabbs.UUCP> <2545@sixhub.UUCP> Reply-To: jfh@rpp386.cactus.org (John F Haugh II) Organization: Lone Star Cafe and BBS Service Lines: 32 X-Clever-Slogan: Recycle or Die. In article <2545@sixhub.UUCP> davidsen@sixhub.UUCP (bill davidsen) writes: > Since the average installation has neither a requirement (as in >government) nor a desire for C2, I wouldn't bet the future of my company >on it. The is a definite desire for greater security, but C2 is only one >set of solutions to the problems. Many of the features in the C2/B1 area are highly desireable to commercial installations. MAC alone would make many managers feel better knowing that the level "employee" is dominated by the level "manager" and that their personnel files are safer. > The problems are real, but the market will not choose high overhead >solutions while alternatives are possible. Correct - it is the bizarre, value-less restrictions which are being enforced here that people are objecting to. AIX v3.1 was "designed to meet" C2, yet it's "su" and "crontab" commands have none of the value-less restrictions you see with SCO UNIX. I wrote someone a note quoting parts from the C2 criteria and said "Where does it say you have to be a pain in the ass?". That sums it up perfectly. Shameless-plug time, but the shadow login package which I've been posting parts of gives most of the features people really want - secure passwords, login restrictions, nice password expiration, etc., but fits right on top of a vanilla UNIX SVRx implementation. If I could just get someone to send me a 386 with SCO UNIX loaded on it, I might be pursuaded to port the code to that environment. -- John F. Haugh II UUCP: ...!cs.utexas.edu!rpp386!jfh Ma Bell: (512) 832-8832 Domain: jfh@rpp386.cactus.org