Relay-Version: version B 2.10 5/3/83; site utzoo.UUCP Path: utzoo!mnetor!seismo!uwvax!oddjob!gargoyle!ihnp4!cuae2!ltuxa!ttrdc!levy From: levy@ttrdc.UUCP (Daniel R. Levy) Newsgroups: comp.unix.wizards Subject: Re: UNIX - the "don't worry about it" operating system? Message-ID: <1802@ttrdc.UUCP> Date: Mon, 6-Jul-87 21:48:46 EDT Article-I.D.: ttrdc.1802 Posted: Mon Jul 6 21:48:46 1987 Date-Received: Fri, 10-Jul-87 01:07:01 EDT References: <17108@glacier.STANFORD.EDU> <1089@killer.UUCP> Organization: AT&T, Skokie, IL Lines: 17 Keywords: locking safety integrity security Summary: you left a file containing cleartext passwords world readable!?! In article <1089@killer.UUCP>, jfh@killer.UUCP (John Haugh) writes: < What bothers me is how other systems are so complex that mistakes are < made as a result of their complexity. My favorite example is VMS. If < I remember correctly, adding users was handled by a program named < AUTHORIZE. The number of entries required to add a single user was < large enough that it was impracticle to add more than two or three < users at a time. So when it came time to add the CSCI students, they < created a big .COM file, and ran that. Of course, VMS had clear-text < passwords entered when users were added, so all it took was finding < the right location for this file. (Which had the suggestive name ADD.COM) See Summary: . -- |------------dan levy------------| path: ..!{akgua,homxb,ihnp4,ltuxa,mvuxa, | an engihacker @ | vax135}!ttrdc!ttrda!levy | at&t data systems division | disclaimer: i am not a yvel nad |--------skokie, illinois--------|