Relay-Version: version B 2.10 5/3/83; site utzoo.UUCP Path: utzoo!utgpu!water!watnot!watmath!clyde!cbatt!ucbvax!SUMEX-AIM.STANFORD.EDU!MRC%PANDA From: MRC%PANDA@SUMEX-AIM.STANFORD.EDU.UUCP Newsgroups: mod.protocols.tcp-ip Subject: Re: My Broadcast Message-ID: <12292708823.9.MRC@PANDA> Date: Tue, 7-Apr-87 18:06:20 EST Article-I.D.: PANDA.12292708823.9.MRC Posted: Tue Apr 7 18:06:20 1987 Date-Received: Sat, 11-Apr-87 00:13:43 EST References: <8704061901.AA22513@ic.Berkeley.EDU> Sender: daemon@ucbvax.BERKELEY.EDU Distribution: world Organization: The ARPA Internet Lines: 31 Approved: tcp-ip@sri-nic.arpa Wayne - In a sense your message is very reminiscent of the attitude of the architects of MIT ITS. It is a useful attitude in certain environments; it has been argued that the security/integrity consciousness of TOPS-20 and Multics hampered tools development (or limited it to system wizards) compared to systems such as ITS, WAITS, and Unix. But this does not mean that it is right for all environments. Even in an environment in which rwalld is useful, it's important to have safeguards in place to limit its range. In the present state of affairs, such safeguards are either absent, not enabled, or inadequately documented. Just as an example, why did Dennis Perry's system at DARPA accept a rwall from a machine somewhere at Berkeley? Maybe Berkeley is doing such time-critical research that breakthroughs must be announced by such "network shouts", but I think it's much more likely that nobody at DARPA even knew that such a facility existed or was running on their machine. Think of what would happen if our IP gateways supported an IP address of FF.FF.FF.FF (the famous and as-yet mythical "Godzilla-gram"). Fortunately, no gateway does. The same sort of sanity check needs to be extended to higher-level protocols. -- Mark -- PS: I could envision a security bug caused by the ability to broadcast arbitrary characters to terminals on other systems. Are all the rwalld implementations clever enough to filter out control characters? Also, those of us who are old enough to know what "cookie bear" know that broadcasting messages CAN effectively stop all work... -------