Relay-Version: version B 2.10 5/3/83; site utzoo.UUCP
Posting-Version: version B 2.10.3 4.3bsd-beta 6/6/85; site ucbvax.BERKELEY.EDU
Path: utzoo!watmath!clyde!cbosgd!ucbvax!tcp-ip
From: mike@BRL.ARPA (Mike Muuss)
Newsgroups: mod.protocols.tcp-ip
Subject: Re:  Network Security
Message-ID: <8512060224.AA16360@ucbvax.berkeley.edu>
Date: Thu, 5-Dec-85 19:09:56 EST
Article-I.D.: ucbvax.8512060224.AA16360
Posted: Thu Dec  5 19:09:56 1985
Date-Received: Fri, 6-Dec-85 08:07:08 EST
Sender: daemon@ucbvax.BERKELEY.EDU
Organization: The ARPA Internet
Lines: 13
Approved: tcp-ip@sri-nic.arpa

If any of your hosts have dialups, then they are not any worse off being
gatewayed to the MILNET.

In any case, you can't depend on the network to provide reasonable
security -- responsibility for security rests firmly on the host machine.
For Army machines, this policy is well articulated by AR 380-380.

BRL's machines implement minimum 6 char passwords, logging of all
login attempts, both good and bad, plus operator notification of
EVERY bad login attempt, plus connection disconnect after 3 tries.

We have found these measures to adequately protect our machines at BRL.
	-Mike