Path: utzoo!mnetor!uunet!cos!hqda-ai!merlin
From: merlin@hqda-ai.UUCP (David S. Hayes)
Newsgroups: sci.crypt
Subject: Re: Unix Password Hacker
Message-ID: <680@hqda-ai.UUCP>
Date: 25 Feb 88 05:20:27 GMT
References: <731@ddsw1.UUCP> <161200005@uiucdcsb>
Organization: Army AI Center, Pentagon
Lines: 14
Summary: Lisp Machines that don't have passwords

In article <161200005@uiucdcsb>, kadie@uiucdcsb.cs.uiuc.edu writes:
> Given the network address of 
> a lisp workstation you can read, delete, modify files from
> anywhere in world via ftp.

     Actually, you can't do this all that easily.  Symbolics,
among others, has recognized this failing.  The machine can be
instructed to accept connections only from "trusted" machines,
that is, machines known in advance to it.  Normally, that will be
only the other workstations on the office LAN.

-- 
David S. Hayes, The Merlin of Avalon	PhoneNet:  (202) 694-6900
UUCP:  *!uunet!cos!hqda-ai!merlin	ARPA:  ai01@hios-pent.arpa