Relay-Version: version B 2.10 5/3/83; site utzoo.UUCP Path: utzoo!mnetor!uunet!husc6!bbn!uwmcsd1!marque!ddsw1!karl From: karl@ddsw1.UUCP (Karl Denninger) Newsgroups: comp.sys.att Subject: Re: Irresponsibility (Was: Security problem on UNIX PC's) Message-ID: <209@ddsw1.UUCP> Date: Sun, 27-Sep-87 16:36:40 EDT Article-I.D.: ddsw1.209 Posted: Sun Sep 27 16:36:40 1987 Date-Received: Mon, 28-Sep-87 03:02:24 EDT References: <54@quincy.UUCP> <149@manta.UUCP> Organization: Traveller's Aid (ddsw1), Chicago Ill. Lines: 39 Keywords: security, root, problem, unix-pc Summary: Not in my view!~ In article <149@manta.UUCP> brant@manta.UUCP (Brant Cheikes) writes: >To Lenny Tropiano: > >The Unix PC system was clearly designed for use in "non-hostile" >environments, where the few security problems that exist (and there >are others) are not important. However, there may be people on the >net using these machines in environments where security is important, >thus we are responsible for not putting those users in jeopardy. As a >result, it's irresponsible to post articles giving exact directions >for violating system security. Even if you're not personally >affected, that doesn't give you the right to post (or encourage others >to post) how-to's on system cracking. Your one thoughtless posting >certainly did far more damage than good. I looked at this article a couple of times before responding, but couldn't help after close consideration... As a system administrator, responsible for our company system (which is open to the public as well on a limited basis), I sure as heck *do* appreciate postings like the one you have referenced. They serve a very useful purpose as far as I can see -- the 'holes' referenced were *very* simple to uncover, and could be used by nearly anyone. Anyone who really 'traffics' in this kind of information probably already has it -- but people like myself do NOT. And by depriving me of this information, you prevent me from defending against such an attack on my equipment. I'll take all the cards face up, please. Let me know where the holes are, and I'll evaluate how to deal with them in the context of my environment at my site. -- Karl Denninger UUCP : ...ihnp4!ddsw1!karl Macro Computer Solutions Dial : +1 (312) 566-8909 (300-1200) "Quality solutions at a fair price" Voice: +1 (312) 566-8910 (24 hrs)