Subject: Re: NetBSD master CVS tree commits
To: matthew green <mrg@eterna.com.au>
From: Jason Thorpe <thorpej@nas.nasa.gov>
List: current-users
Date: 02/22/1997 00:39:46
On Sat, 22 Feb 1997 19:18:39 +1100
matthew green <mrg@eterna.com.au> wrote:
> i'm not sure i like this, from a `security' point of view. if i have
> marked the console as insecure, then by hell i want netbsd to do it's
> best to keep the bad guys out! and that includes *me* until i
> authenticate myself. security systems should *always* fail closed
> (though, it's somewhat of a stretch to consider this to be failure :-).
>
> IMO, `insecure console' and `no root password' situations are generally
> going to be caused by pilot error, and `reducing' the security of the
> system to work around this is a bad idea.
In a situation where there _was_ pilot error, I think there's an argument
to be made for recoverability...
Well, "you're the boss" with the security stuff... if you really strongly
object to it, it can be backed out.
Jason R. Thorpe thorpej@nas.nasa.gov
NASA Ames Research Center Home: 408.866.1912
NAS: M/S 258-6 Work: 415.604.0935
Moffett Field, CA 94035 Pager: 415.428.6939