Relay-Version: version B 2.10 5/3/83; site utzoo.UUCP
Path: utzoo!mnetor!seismo!rutgers!nike!ucbcad!ucbvax!star.DEC.COM!piper
From: piper@star.DEC.COM (Hobbit)
Newsgroups: mod.computers.vax
Subject: SET PROTECTION=(WORLD:RWLP) Txxx
Message-ID: <8610281425.AA12055@decwrl.dec.com>
Date: Tue, 28-Oct-86 09:12:04 EST
Article-I.D.: decwrl.8610281425.AA12055
Posted: Tue Oct 28 09:12:04 1986
Date-Received: Tue, 28-Oct-86 23:34:45 EST
Sender: daemon@ucbvax.BERKELEY.EDU
Organization: The ARPA Internet
Lines: 19
Approved: info-vax@sri-kl.arpa

> Just a comment to the ALLOCATE-command:
>
> If You add the following line in Your SYSTARTUP.COM for all terminal
> lines, then everybody may allocate currently unused terminals:
>
> $ SET PROTECTION=W:RWLP/DEVICE TXnn:

If your   site   is   security   conscious  you  might  not  want  to  allow
non-privileged  users  to allocate unused terminals. That leaves you open to
the  hacker  who  allocates  a terminal and then writes a trivial program to
fake a login sequence.

See section  5.3.1.1  of  the  VAX/VMS  Guide  to  System  Security for more
information on restricting terminal usage.

Derrell Piper
Digital Equipment Corporation
110 Spit Brook Rd.
Nashua, NH 03062