Path: utzoo!attcan!uunet!lll-winken!lll-lcc!ames!umd5!brl-adm!adm!erik@naggum.uio.no
From: erik@naggum.uio.no (Erik Naggum)
Newsgroups: comp.unix.wizards
Subject: A UUCP system security checklist
Message-ID: <16507@brl-adm.ARPA>
Date: 14 Jul 88 21:05:35 GMT
Sender: news@brl-adm.ARPA
Lines: 26


Dear Systems Administrator,

Here's a little checklist.

[ ]  Do you allow uusend from uuxqt?

[ ]  Does uuxqt run under uid uucp?

[ ]  Are your most valuable UUCP files 0600 for security?

[ ]  Are the same files owned by uucp?

[ ]  You look up the parameters to uusend, and see what you can do if
     you tell uux to do it.

[ ]  You didn't like what just occured to you.

Yours, in a safer world,
Erik Naggum
--
UUCP  --   erik@naggum.se		UNIX is not ``eunuchs'' --  
ARPA  --   enag@naggum.uio.no		in fact it's rather potent
Snail --   Naggum Software; POB 1560 VIKA; OSLO 0118; NORWAY
Phone --   +47-2-384-400 (office), +47-2-549-163 (home)

"I wasn't paranoid until that man started following me." -- me, today.