Relay-Version: version B 2.10 5/3/83; site utzoo.UUCP Path: utzoo!mnetor!seismo!sundc!gouldsd!mjranum From: mjranum@gouldsd.UUCP (Marcus J Ranum) Newsgroups: comp.unix.questions Subject: Re: Question about Secure Unix Message-ID: <444@gouldsd.UUCP> Date: Tue, 16-Dec-86 17:09:44 EST Article-I.D.: gouldsd.444 Posted: Tue Dec 16 17:09:44 1986 Date-Received: Wed, 17-Dec-86 20:27:47 EST References: <1485@brl-adm.ARPA> <399@unisec.USI.COM> Organization: Gould Electronics, Landover MD. Lines: 40 In article <399@unisec.USI.COM>, dpw@unisec.USI.COM (Darryl P. Wagoner) writes: > In article <1485@brl-adm.ARPA> ron@BRL.ARPA (Ron Natalie) writes: > >It's certified all right, but by the time they got done with it, > >it doesn't look much like UNIX. Oh course it doesn't look 100% like UNIX. For example, the entire setuid concept is thrown away. In order to be certifiable, if I am correct, the networking was thrown away. A lot of the old favorite UNIX ideas are big security loopholes and in order to be certified they had to be gotten rid of. I am sure this subject is good ground for lots of argument. I gather that the approach Gould took was to place an emphasis on producing a secure UNIX at the expense of making it necessarily different. From the ad (I assume the same as yours) it sounds like it'd be tougher to crack. I really don't think anything is ever 100% secure, unless it's write-only hardware technology :-) There was a posting a few months back from a fellow who did hack up secure UNIX. From what he said, it was not a flaw in secure UNIX that allowed him to break in, but rather a goof on the part of the systems administrator. No UNIX system is secure without a suitably paranoid sysadmin. > I think that you got caught up in the wording of their ad's. It is > certifiable (maybe). From what I have heard they have just finished the > paper review of the design. That Not quite the same thing. If I am correct, it is certified. Certainly that is more than can be said for 4.2BSD > -- > Darryl Wagoner > UniSecure Systems, Inc.; dpw@unisec.usi.com UniSecure systems ? What do they manufacture, unicycle locks ? I, incidentally, work for a completely different section of Gould, and have no personal stake in this matter. Live Free mjr