Path: utzoo!attcan!uunet!husc6!linus!heart-of-gold!jc
From: jc@heart-of-gold (John M Chambers)
Newsgroups: comp.protocols.tcp-ip
Subject: Re: Virus - did it infect "secure" machines
Keywords: Kerebos
Message-ID: <170@heart-of-gold>
Date: 15 Nov 88 15:28:06 GMT
References: <1792@sbcs.sunysb.edu>
Organization: Mitre Corp, Bedford, MA, USA
Lines: 20

In article <1792@sbcs.sunysb.edu>, root@sbcs.sunysb.edu (root) writes:
> Does anyone know whether the sendmail virus was able to infect
> the machines protected by Kerebos?  No flames, please, the question
> isn't a statement against Kerebos per se; I just wonder whether
> clever people will always find ways into "secure" Unix boxes.
> What about machines that have met with tempest specs?
> 
You should be a bit wary of accepting the answers.  I personally know of
several MilNet systems that were infected, but the public answer from their
administrators is "Of course not!"  Ask yourself:  Why should they tell the
truth?  I suspect that nobody (not even those in security agencies) will
ever know how widespread the infection really was.  Considering that no
real damage was done, it's very easy to cover up an infection and pretend
it never happened.

-- 
From:	John Chambers <mitre-bedford.arpa!heart-of-gold!jc>
From	...!linus!!heart-of-gold!jc (John Chambers)
Phone	617/217-7780
[Send flames; they keep it cool in this lab :-]