krvw@cert.sei.cmu.edu (Kenneth R. van Wyk) (04/19/91)
There has been some renewed talk recently about viruses infecting LANs. I would just like to toss in the following observation. LANs (specifically LAN file servers) are, in essence, multi-user systems. As with other multi-user systems (e.g., UNIX), there are many administrative issues involved with virus protection in addition to the basic integrity of the LAN operating system. Most importantly, file and directory protections become critical. A single world-writable and publicly available file can quickly become a vector for a virus without the virus having ANY knowledge that it is indeed infecting a LAN; most LAN interfaces are, after all, designed to look just like DOS to the average application program and to the user. Also, privileged users can bypass file protections. If a privileged user executes an infected file, the LAN may become infected - again without the virus having any knowledge that it is infecting a LAN. These issues are CRITICAL! Before we jump to conclusions about any LAN being susceptible to a virus, we must very carefully examine all of the possibilities. Cheers, Ken van Wyk