lmc@denelcor.UUCP (Lyle McElhaney) (12/08/84)
I am a system administrator on a system where security is a rather important
consideration. As in many other companies, our system is used by company
management for e-mail, planning, and other functions which involve company
proprietary and sensitive data. In recent net postings it has been noted
that "those in the know" have provided themselves with such protection as
exists for the known loopholes. That information, concerning the bugs and
design flaws in Unix that lead to security problems, seeps, if at all, via
word of mouth, and doesn't often reach those who could benefit from it (and
I don't mean the crackers).
In a reasonable universe the needed information would appear here in either
net.unix.wizards or net.bugs.*. It has been pointed out, however, that
spreading it around the net would benefit the baddies more than help the
goodies. Since mailing lists seem to be the rage now, I would like to propose
a mailing list for sa's that would discuss security issues in Unix. I would
offer my services to moderate the list. I imagine that only root addressees
would be on the list, in order to control the distribution somewhat (yes,
I know that mail is not secure - maybe that's an issue that could be attacked
early on).
How say you? Mail replies to me and I'll see what happens. I need this in
order to do my job; there have to be others out there in the same boat.
--
Lyle McElhaney
{hao, stcvax, brl-bmd, nbires, csu-cs} !denelcor!lmced@hpfcmp.UUCP (ed) (12/09/84)
Couldn't agree with you more, Lyle! Please add my name to the mailing list. Security and Unix, the words just don't seem to go together. :-) Cheers, Ed Arnold (csu-cs!hpfcla!hpfcmc!root) - For mailing list. (csu-cs!hpfcla!ed) - For little old me.
schnable@ihuxf.UUCP (Andrew T. Schnable) (12/11/84)
There is a very good article in the latest BLTJ on UNIX security. UNIX Operating System Security, F. T. Grampp, R. H. Morris, Oct. 1984 AT&T Bell Laboratories Technical Journal, Vol. 63, No. 8, Part 2. andy ihuxf!schnable
david@ukma.UUCP (David Herron, NPR Lover) (12/27/84)
If there's gonna be a mailing list for unix security, put me on
it too.
I can be reached as user id "root" at ukma as well. (or news, or s, or ...)
--:--:--:--:--:--:--:--:--:--:--:--:--:--:--:--:--:--:--:--:--:--:--:--:-
David Herron; ARPA-> "ukma!david"@ANL-MCS
(Try the arpa address w/ and w/o the quotes, I have had much trouble with both.)
UUCP -:--:--:--:--:--:--:--:--:- (follow one of these routes)
{ucbvax,unmvax,boulder,research} ! {anlams,anl-mcs} -----\ vvvvvvvvvvv
>-!ukma!david
{cbosgd!hasmed,mcvax!qtlon,vax135,mddc} ! qusavx -----/ ^^^^^^^^^^^brad@bradley.UUCP (12/30/84)
Same here also
Bradley Smith UUCP: {cepu,ihnp4,noao,uiucdcs}!bradley!brad
Text Processing ARPA: cepu!bradley!brad@UCLA-LOCUS
Bradley University PH: (309) 676-7611 Ext. 446
Peoria, IL 61625
or bradley!rootmcferrin@inuxj.UUCP (P McFerrin) (01/02/85)
> #R:hpfcmp:2124967196:bradley:1800001:000:213 > bradley!brad Dec 29 22:52:00 1984 > > Same here also > > > Bradley Smith UUCP: {cepu,ihnp4,noao,uiucdcs}!bradley!brad > Text Processing ARPA: cepu!bradley!brad@UCLA-LOCUS > Bradley University PH: (309) 676-7611 Ext. 446 > Peoria, IL 61625 > > or bradley!root *** REPLACE THIS LINE WITH YOUR MESSAGE *** For some reason, our system missed the original article on this. Would someone please send it to me.
richardg@elecvax.OZ (Richard Grevis) (01/10/85)
It irks me to post news when it should be mail, but I can't find the original posting on setting up the UNIX security fun group. Could whoever controls this (Lyle?) please add my name to it. Thanks, Richard Grevis (...decvax!mulga!cadvax!richardg) Joint Microelectronics Research Centre, University of N.S.W, Australia (you know, the place that is never mentioned as being in the net)