Xref: utzoo comp.unix.programmer:1344 alt.sources.d:1629
Path: utzoo!utgpu!cs.utexas.edu!usc!rpi!zaphod.mps.ohio-state.edu!lavaca.uh.edu!menudo.uh.edu!sugar!ficc!karl
From: karl@ficc.ferranti.com (Karl Lehenbauer)
Newsgroups: comp.unix.programmer,alt.sources.d
Subject: Re: C2 secure systems and the superuser
Message-ID: <VR=9J-D@xds12.ferranti.com>
Date: 17 Mar 91 21:45:02 GMT
References: <19103@rpp386.cactus.org> <1991Mar13.185609.21132@convex.com> <5988:Mar1400:07:0391@kramden.acf.nyu.edu> <1991Mar14.022920.19647@convex.com>
Reply-To: karl@ficc.ferranti.com (Karl Lehenbauer)
Organization: Ferranti International Controls Corporation
Lines: 13

In article <1991Mar14.022920.19647@convex.com> tchrist@convex.COM (Tom Christiansen) writes:
>... The C2 folks seem to think a system is
>more secure this way, but I see it as having N accounts to try to
>find holes into rather than just one.  This makes it easier for
>the cracker.

Yeah, too, most Unix systems are small enough that they only have one or 
two administrators anyway, so for small sites, having lots of different
signons with different permissions is simply an inconvenience to the one
person who does all the admin stuff anyway.
-- 
-- "If it ain't too broke, don't fix it."  -- me, with apologies to Bert Lantz
	Save Twin Peaks!!