GWD21T@DGOGWD01.BITNET.UUCP (02/12/87)
Now and then people mention that a default DECNET account may cause
trouble. That is not quite wrong. However, I think the following
makes it rather secure:
$ SET FILE SYS$SYSTEM:FAL.EXE/ACL=(IDENTIFIER=DECNET,ACCESS=NONE)
(you have to execute this command prior to @STARTNET)
This just disables "default" file access, but still allows for
things like MAIL, PHONE and the other KNOWN OBJECTS, without requiring
proxies.
Any comments?
P.S. I don't like ACLs, this is the only one I found really helpful.
W.J.Moeller, GWDG, D-3400 Goettingen, F.R.Germany <GWD21T@DGOGWD01>
Phone +49 551 201516