Xref: utzoo comp.unix.internals:2293 comp.unix.admin:1168
Path: utzoo!news-server.csri.toronto.edu!rutgers!cs.utexas.edu!uunet!mcsun!hp4nl!svin02!wsinfo11!rcpieter
From: rcpieter@wsinfo11.info.win.tue.nl (Tiggr)
Newsgroups: comp.unix.internals,comp.unix.admin
Subject: Re: Unix security additions
Message-ID: <1819@svin02.info.win.tue.nl>
Date: 11 Mar 91 14:36:19 GMT
References: <39950@cup.portal.com>
Sender: news@svin02.info.win.tue.nl
Reply-To: rcpieter@info.win.tue.nl
Followup-To: comp.unix.internals
Lines: 14

PLS@cup.portal.com (Paul L Schauble) writes:

>I'm curious: What do you think are the five most significant changes or 
>additions that have been made to Unix to improve its security?

Which brings up the question of the largest still existing security
leak:  Why does UNIX still trust the network (ethernet in most cases)
it is attached to?  Nothing is simpler than plugging a PC into an
ethernet (for instance using a PC at a publicly accessible place) and
watch the packets go by.  Five minutes waiting brings you a lot of
passwords.  When will internet packets start being encrypted?

Just an itchy feeling...
Tiggr