Path: utzoo!utgpu!news-server.csri.toronto.edu!cs.utexas.edu!usc!wuarchive!ukma!usenet.ins.cwru.edu!ncoast!allbery
From: allbery@NCoast.ORG (Brandon S. Allbery KB8JRR)
Newsgroups: comp.unix.sysv386
Subject: Re: SCO doesn't sell UNIX
Message-ID: <1990Dec14.042403.29669@NCoast.ORG>
Date: 14 Dec 90 04:24:03 GMT
References: <1990Dec1.223750.16286@NCoast.ORG> <275A9A50.3F3F@tct.uucp> <2341@tabbs.UUCP>
Reply-To: allbery@ncoast.ORG (Brandon S. Allbery KB8JRR)
Followup-To: comp.unix.sysv386
Organization: North Coast Public Access *NIX, Cleveland, OH
Lines: 25

As quoted from <2341@tabbs.UUCP> by aris@tabbs.UUCP (Aris Stathakis):
+---------------
| Ya, I don't like it either, but I can live with it.  If we like it or not,
| we're going to have to live with a more secure UNIX.  End users will be
| demanding it, and we'll have to provide it.  Maybe not now, but 2 years
| down the line I think all UNIX systems will have a C2 or better
| security rating.  
+---------------

Beg pardon, but I just read an article recently (in VARBUSINESS) about how C2
may be great for the government, but its security features aren't the same as
the security features wanted by most businesses.  Consider that the Orange
Book sets out a security scheme that is ultimately intended to block security
leaks by highly-placed spies....

...whereas if I wanted to make the SVR3.1 system at work secure from prying
outsiders, I could do so without C2.  Although I do admit that group vectors
help a lot.  But group vectors aren't the problem with C2.

++Brandon
-- 
Me: Brandon S. Allbery			    VHF/UHF: KB8JRR on 220, 2m, 440
Internet: allbery@NCoast.ORG		    Packet: KB8JRR @ WA8BXN
America OnLine: KB8JRR			    AMPR: KB8JRR.AmPR.ORG [44.70.4.88]
uunet!usenet.ins.cwru.edu!ncoast!allbery    Delphi: ALLBERY