Path: utzoo!utgpu!news-server.csri.toronto.edu!bonnie.concordia.ca!uunet!lll-winken!iggy.GW.Vitalink.COM!widener!netnews.upenn.edu!vax1.cc.lehigh.edu!cert.sei.cmu.edu!krvw
From: p1@arkham.wimsey.bc.ca (Rob Slade)
Newsgroups: comp.virus
Subject: Questions re. UNIX viruses (UNIX)
Message-ID: <0011.9104081309.AA03138@ubu.cert.sei.cmu.edu>
Date: 5 Apr 91 19:33:11 GMT
Sender: Virus Discussion List <VIRUS-L@LEHIIBM1>
Lines: 20
Approved: krvw@sei.cmu.edu

micor!esleng!esleng.ocunix.on.ca!dag@uunet.UU.NET (Dave Gilmour) writes:

> 3)	What steps should I take in order to "reduce the risk" |-)

Others will likely give you better technical information, but the biggest
single "whole" that has been shown by the Morris/Internet/UNIX worm, the
WANK/VMS worm and Clifford Stoll's experience ("The Cuckoo's Egg") is the
failure to rename and reassign security files and system passwords.  The
best (simple) protection you can give yourself is to change all standard
system defaults relating to system access.

(UNIX gurus, no flames please.  you *know* I am not refering to "terminal
type".)

=============
Vancouver          p1@arkham.wimsey.bc.ca   | "Is it plugged in?"
Institute for      Robert_Slade@mtsg.sfu.ca | "I can't see."
Research into      (SUZY) INtegrity         | "Why not?"
User               Canada V7K 2G6           | "The power's off
Security                                    |  here."