Relay-Version: version B 2.10 5/3/83; site utzoo.UUCP
Posting-Version: version B 2.10.3 4.3bsd-beta 6/6/85; site ucbvax.BERKELEY.EDU
Path: utzoo!watmath!clyde!burl!ulysses!cbosgd!ucbvax!info-vax
From: info-vax@ucbvax.UUCP
Newsgroups: mod.computers.vax
Subject: (none)
Message-ID: <8511190516.AA13664@ucbvax.berkeley.edu>
Date: Tue, 19-Nov-85 00:16:04 EST
Article-I.D.: ucbvax.8511190516.AA13664
Posted: Tue Nov 19 00:16:04 1985
Date-Received: Thu, 21-Nov-85 06:45:07 EST
Sender: daemon@ucbvax.BERKELEY.EDU
Organization: The ARPA Internet
Lines: 30
Approved: info-vax@sri-kl.arpa

Subject: Re: Does DEC even care about security issues
In-reply-to: your article <8511180828.AA21362@ucbvax.berkeley.edu>

In article <8511180828.AA21362@ucbvax.berkeley.edu>, Magill@UPENN.CSNET (MSCF Operations Manager) writes:
>........
>Any operating system which does NOT PERMIT its backup
>system to enforce standard labels can't even joke about
>security - they simply don't give a damm.
>Any system which permits ANY user to arbitrarily overrule
>standard ANSI tape labels cannot even jokeingly talk
>about secureity. I can not even protect my backup tapes
>from users except by physically locking them up.
>........

A comment on locking up tapes--

This is the best thing to do with tapes if they contain sensitive material
even if you have the most secure backup utility in the world (short of
encryption upon writing to tape).  Any Joe Blow with his own system
can mount that tape, while logged in as root, SYSTEM, or other sysadmin, and
have a ball.  At the worst he would have to copy the tape image physically
to disk, then hack on it, which would be very easy with Unix, for example.
(Of course he DOES have to sneak out the tape physically.)
--
 -------------------------------    Disclaimer:  The views contained herein are
|       dan levy | yvel nad      |  my own and are not at all those of my em-
|         an engihacker @        |  ployer or the administrator of any computer
| at&t computer systems division |  upon which I may hack.
|        skokie, illinois        |
 --------------------------------   Path: ..!ihnp4!ttrdc!levy