Relay-Version: version B 2.10 5/3/83; site utzoo.UUCP Posting-Version: version B 2.10.3 4.3bsd-beta 6/6/85; site ucbvax.BERKELEY.EDU Path: utzoo!decvax!decwrl!ucbvax!info-vax From: MHJohnson@HI-MULTICS.ARPA (Mark Johnson) Newsgroups: mod.computers.vax Subject: Re: Publishing Security Holes on INFO-VAX Message-ID: <851115163638.558381@HI-MULTICS.ARPA> Date: Fri, 15-Nov-85 11:36:00 EST Article-I.D.: HI-MULTI.851115163638.558381 Posted: Fri Nov 15 11:36:00 1985 Date-Received: Tue, 19-Nov-85 00:26:42 EST Sender: daemon@ucbvax.BERKELEY.EDU Organization: The ARPA Internet Lines: 25 Approved: info-vax@sri-kl.arpa I would like to see security problem messages to continue. The reasons include: 1) I read INFO-VAX on a regular basis & read hacker's bulletin boards not at all. Please give me a chance to fix up my system before the problem people have a chance to trash it up. 2)It gives me a reason to continue to read INFO-VAX & other mailing lists even though it costs my company $$ to move the mail around. 3) Publicity tends to make fixes come more quickly from vendors (not just DEC), & makes the system better for everyone. Now about the logical name table problem... does this mean I have to add to my SYSTARTUP file something on the order of: $ SET ACL/OBJ=LOG/ACL=(ID=*,ACCESS=READ) LNM$SYSTEM_DIRECTORY -- ditto for LNM$SYSTEM_TABLE, LNM$GROUP_000001, LNM$GROUP_*, PSI* -- That is a lot of tables. Note that for the group tables, you need to create them first (except for _000001). Perhaps Andy (or someone else at DEC) could give us (& DSIN) a real work-around for this problem that covers all of the bases. About INFO-VAX-SECURITY (or whatever), I don't want to see it there since you will have problems validating me, a VMS system manager accessing the network through a Multics system. --Mark Johnson