Relay-Version: version B 2.10 5/3/83; site utzoo.UUCP
Path: utzoo!mnetor!uunet!seismo!mimsy!umd5!brl-adm!brl-smoke!gwyn
From: gwyn@brl-smoke.ARPA (Doug Gwyn )
Newsgroups: comp.unix.wizards
Subject: Re: UNIX classified operation - (nf)
Message-ID: <6169@brl-smoke.ARPA>
Date: Fri, 24-Jul-87 21:54:43 EDT
Article-I.D.: brl-smok.6169
Posted: Fri Jul 24 21:54:43 1987
Date-Received: Sat, 25-Jul-87 16:53:48 EDT
References: <175@uw-apl.UUCP> <8300007@iaoobelix.UUCP> <735@jenny.cl.cam.ac.uk> <468@unisoft.UUCP> <1335@osiris.UUCP>
Reply-To: gwyn@brl.arpa (Doug Gwyn (VLD/VMB) )
Organization: Ballistic Research Lab (BRL), APG, MD.
Lines: 13

In article <1335@osiris.UUCP> mjr@osiris.UUCP (Marcus Ranum) writes:
>This type of boneheadedness will all be done on secure UNIX systems, anyhow...

Not necessarily.  Another, technically much superior approach to classified
computing is to operate the system inside a physically controlled area
(vault).  That's actually the approach that BRL seems to prefer, rather
than crippling our systems so that perfectly reasonable application needs
can no longer be effectively met (which is what the Orange Book would have
you do).  Government regulations in general appear to be written by people
who have insufficient input from the working level that the regulations
would directly impact.  So long as the politicians continue to think that
they have some special ability to fix problems by administrative fiat, this
situation wessiessie FL