Relay-Version: version B 2.10 5/3/83; site utzoo.UUCP
Path: utzoo!mnetor!uunet!husc6!ut-sally!utah-cs!peterson
From: peterson@utah-cs.UUCP (John W Peterson)
Newsgroups: comp.sys.apollo
Subject: Re: Network Security (turing off kill in csh)
Message-ID: <5087@utah-cs.UUCP>
Date: Wed, 28-Oct-87 13:39:33 EST
Article-I.D.: utah-cs.5087
Posted: Wed Oct 28 13:39:33 1987
Date-Received: Sat, 31-Oct-87 09:00:09 EST
References: <2359@super.upenn.edu>
Organization: University of Utah CS Dept
Lines: 18

> 
> On an generic 4.2 system, kill will not allow you to signal processes that
> you do not own; however, under DOMAIN/IX (SR9.5) I seem to be able to kill
> any process that I choose (even processes owned by root !!!). Is there any way
> to turn off kill in the c-shell ??? Is this a bug in DOMAIN/IX ??? Is there
> a way around this problem other than giving remote users an AEGIS shell ??
> 

The lack of process security (except for the DM) has been a problem since
day zero (actually day SR6, when CRP was invented).  Restricting remote
users to the Aegis shell doesn't really help, because they can still go
blasting away with "sigp".

I wouldn't be surprized if SR10 fixed this, but it's been a "known bug"
for some time.

Cheers,
jp