rang@cpsin3.cps.msu.edu (Anton Rang) (11/10/88)
In article <1988Nov9.033444.20788@tmsoft.uucp>, mason@tmsoft.UUCP (Dave Mason) writes: >There are either: >a) a lot of sysadmins out there who don't think there's much point in taking >REASONABLE security precautions, like making sure that trusted programs like >mailers don't have wide-open DEBUG modes installed on production machines >-or- >b) a lot of sysadmins who's bosses don't think there's much point .... >and therefore have the sysadmins spend time & effort elsewhere. >-plus, of course- >c) sysadmins who haven't had the time/training to realize there are security >holes that need plugging. You could also add: d) Sysadmins who don't have source code for their vendor-supplied programs. e) Sysadmins who have fixed the obvious holes, but don't have time to fix the hundreds of not-so-obvious ones. +---------------------------+------------------------+----------------------+ | Anton Rang (grad student) | "UNIX: Just Say No!" | "Do worry...be SAD!" | | Michigan State University | rang@cpswh.cps.msu.edu | | +---------------------------+------------------------+----------------------+