Relay-Version: version B 2.10 5/3/83; site utzoo.UUCP
Posting-Version: version B 2.10.3 4.3bsd-beta 6/6/85; site ucbvax.BERKELEY.EDU
Path: utzoo!decvax!ucbvax!tcp-ip
From: sra@MITRE-BEDFORD.ARPA
Newsgroups: mod.protocols.tcp-ip
Subject: Network Security
Message-ID: <8512051344.AA03870@mitre-bedford.ARPA>
Date: Thu, 5-Dec-85 08:43:56 EST
Article-I.D.: mitre-be.8512051344.AA03870
Posted: Thu Dec  5 08:43:56 1985
Date-Received: Fri, 6-Dec-85 00:35:46 EST
Sender: daemon@ucbvax.BERKELEY.EDU
Organization: The MITRE Corp., Bedford, MA
Lines: 17
Approved: tcp-ip@sri-nic.arpa

I would like to start a dialogue on network security.

We currently have one host on the Milnet and are about to hook up 
our Ethernet subnet through a gateway.  The problem is that upper 
level management is deathly afraid of hackers rummaging around 
throughout our network.

It seems that one host on the network is almost acceptable but 
many may open up Pandoras box.

What types of controls could be placed within the gateway to 
limit our access to random telnets and what arguments could we 
use to convince management that connecting our subnet to the 
Milnet does not increase our exposure to random attacks.

Stan Ames
sra at MITRE-Bedford