Relay-Version: version B 2.10 5/3/83; site utzoo.UUCP
Posting-Version: version B 2.10.3 4.3bsd-beta 6/6/85; site ucbvax.BERKELEY.EDU
Path: utzoo!watmath!clyde!cbosgd!ucbvax!info-vax
From: jeffrey%cmc.cdn%ubc.CSNET@CSNET-RELAY.ARPA (Craig Jeffrey)
Newsgroups: mod.computers.vax
Subject: VAX Security
Message-ID: <533:jeffrey@cmc.cdn>
Date: Wed, 13-Nov-85 14:37:39 EST
Article-I.D.: cmc.533:jeffrey
Posted: Wed Nov 13 14:37:39 1985
Date-Received: Fri, 15-Nov-85 05:02:06 EST
Sender: daemon@ucbvax.BERKELEY.EDU
Organization: The ARPA Internet
Lines: 19
Approved: info-vax@sri-kl.arpa

Date: 13 Nov 85 1322 GMT
From: Craig Jeffrey <jeffrey@cmc.cdn>
To: goldstein%galaxy.DEC@decwrl.DEC.com
In-Reply-To: <8511121745.AA08383@decwrl.DEC.COM>
Message-ID: <532:jeffrey@cmc.cdn>
Subject: Publishing Security Holes on INFO-VAX


As a system manager who needs a secure system, I welcome any discussions
about security issuses in INFO-VAX.  DEC approach to security is 
is somewhat simplistic (we use third party security mechanisms) and I
would much rather see DEC respond intelligently to security holes than
attempt to "gag" them by making pious statements about what's good for DEC
is good for the general computing community.

Craig Jeffrey
/////////////      Canadian Microelectronics Corportion
                   Carruthers Hall
                   Kingston, Ontario Canada