Great Circle Associates Firewalls
(July 1994)
 

Indexed By Date: [Previous] [Next] Indexed By Thread: [Previous] [Next]

From: James Tanis <jtt @ cs . columbia . edu>
Date: Wed, 27 Jul 1994 13:20:58 -0400
To: rens @ imsi . com
Cc: ted @ gw . lsli . com, firewalls @ greatcircle . com
In-reply-to: Your message of "Tue, 26 Jul 1994 15:01:21 EDT." <9407261901 . AA20024 @ lorax . imsi . com>

In message <9407261901 .
 AA20024 @
 lorax .
 imsi .
 com>, Rens Troost avows:
%--- Begin Cite ---%
> 
> >>>>> "ted" == ted  <ted @
 gw .
 lsli .
 com> writes:
> 
>   ted> Hold the phone there cheif. As I recall AIX 3 exceeds the
>   ted> Department of Defence C2 security rating.
> 
> Ahem. Perhaps the SPEC does, but wasn't it just a month ago that the
> patch for rlogin aixhost -l -froot was released? AIX is a bloated mass
> of gratuitously reimplemented code. Very hard to secure. You'll also
> recall the tprof hole. And a dozen others.
> 
>   ted> from intruders since 1988. That in itself is remarkable
>   ted> considering their high profile.
> 
> I'm not making any comment about PORTUS, since I have not used it. I'm
> sure AIX can be beaten into a decent firewall. As for AIX being a
> secure OS... 
> 
> -Rens
%--- End Cite ---%	

As a matter of fact RS6000's running AIX is the required hardware for no
fewer than two major commercial firewall packages (as you pointed out
PORTUS is one). Folks seem happy enough with them.

/jtt


References:
Indexed By Date Previous: AIX as a Firewall
From: plarkin @ iphase . com (Patrick Larkin Jr)
Next: Re: your mail
From: z056716 @ uprc . com (LaCoursiere J. D. (Jeff))
Indexed By Thread Previous: [no subject]
From: Rens Troost <rens @ imsi . com>
Next: Re: your mail
From: Adam Shostack <adam @ bwh . harvard . edu>

Google
 
Search Internet Search www.greatcircle.com