Path: utzoo!utgpu!news-server.csri.toronto.edu!rpi!zaphod.mps.ohio-state.edu!ncar!gatech!rutgers!aramis.rutgers.edu!paul.rutgers.edu!makmur From: makmur@paul.rutgers.edu (Hanz Makmur) Newsgroups: comp.protocols.appletalk Subject: Re: Cayman's 'Watch' is security threat. Message-ID: Date: 14 May 91 20:34:39 GMT References: <23491.9105141352@crete.dcs.glasgow.ac.uk> Organization: Rutgers Univ., New Brunswick, N.J. Lines: 30 To: inei@cs.glasgow.ac.uk In article <23491.9105141352@crete.dcs.glasgow.ac.uk> inei@cs.glasgow.ac.uk (Nick Nei) writes: > What I dread has finally happened - our students have discovered > Cayman's Watch program and with glee watched user's login passwords > fly by on their screens while running Watch. > > Does anyone have any suggestions? Yes it is a problem . This is the biggest problem with tools like this. I am afraid this is a clasical problem that can only be solved with two way encryption. The user must know what to do and have to really inspect each packets to see the password. Cayman Watch program is very dangerous on the the ethernet side and not that dangerous on the localtalk side unless some one is using NCSA Telnet to login to other machines. On the ethernet side, it is very dangerous since it can see all the packets that fly by the cable it is connected to. Suggestions ?? - May be remove Watch from public access mac. - Pray that no one know how to use it. - Tough policy. May be add this line: "Death Sentence" if got caught using unauthorize account. Hanz Makmur Rutgers University