Firewalls: [no subject]

Firewalls
(August 1994)

Indexed By Thread: [Previous] [Next]

From:	Andreas Paukert <apa @ baltic . e-technik . uni-rostock . de>
Date:	Thu, 4 Aug 1994 13:25:46 +0200
Apparently-to:	firewalls @ GreatCircle . Com
Posted-date:	Thu, 4 Aug 1994 13:25:46 +0200

>From firewalls-owner @
 GreatCircle .
 COM Thu Jul 28 03:40 MES 1994 forwarded by apa
Received: from relay2.UU.NET by baltic.e-technik.uni-rostock.de with SMTP
	(1.36.108.7/15.6) id AA17488; Thu, 28 Jul 1994 03:40:36 +0200
Return-Path: <firewalls-owner @
 GreatCircle .
 COM>
Posted-Date: Wed, 27 Jul 1994 13:20:58 -0400
Received-Date: Thu, 28 Jul 1994 03:40:36 +0200
Received: from mycroft.GreatCircle.COM by relay2.UU.NET with SMTP 
	id QQxala27760; Wed, 27 Jul 1994 21:37:01 -0400
Received: from localhost by mycroft.GreatCircle.COM (8.6.5/SMI-4.1/Brent-940726)
	id RAA08340; Wed, 27 Jul 1994 17:17:42 GMT
Received: from cs.columbia.edu by mycroft.GreatCircle.COM (8.6.5/SMI-4.1/Brent-940726)
	id KAA08326; Wed, 27 Jul 1994 10:17:28 -0700
Received: from pizza.cs.columbia.edu (pizza.cs.columbia.edu [128.59.26.43]) by cs.columbia.edu (8.6.9/8.6.6) with ESMTP id NAA01766; Wed, 27 Jul 1994 13:21:04 -0400
Received: from localhost (jtt @
 localhost) by pizza.cs.columbia.edu (8.6.9/8.6.6) with SMTP id NAA14206; Wed, 27 Jul 1994 13:20:59 -0400
Message-Id: <199407271720 .
 NAA14206 @
 pizza .
 cs .
 columbia .
 edu>
To: rens @
 imsi .
 com
Cc: ted @
 gw .
 lsli .
 com, firewalls @
 GreatCircle .
 COM
In-Reply-To: Your message of "Tue, 26 Jul 1994 15:01:21 EDT."
             <9407261901 .
 AA20024 @
 lorax .
 imsi .
 com> 
Date: Wed, 27 Jul 1994 13:20:58 -0400
From: James Tanis <jtt @
 cs .
 columbia .
 edu>
Sender: Firewalls-Owner @
 GreatCircle .
 COM
Precedence: bulk


In message <9407261901 .
 AA20024 @
 lorax .
 imsi .
 com>, Rens Troost avows:
%--- Begin Cite ---%
> 
> >>>>> "ted" == ted  <ted @
 gw .
 lsli .
 com> writes:
> 
>   ted> Hold the phone there cheif. As I recall AIX 3 exceeds the
>   ted> Department of Defence C2 security rating.
> 
> Ahem. Perhaps the SPEC does, but wasn't it just a month ago that the
> patch for rlogin aixhost -l -froot was released? AIX is a bloated mass
> of gratuitously reimplemented code. Very hard to secure. You'll also
> recall the tprof hole. And a dozen others.
> 
>   ted> from intruders since 1988. That in itself is remarkable
>   ted> considering their high profile.
> 
> I'm not making any comment about PORTUS, since I have not used it. I'm
> sure AIX can be beaten into a decent firewall. As for AIX being a
> secure OS... 
> 
> -Rens
%--- End Cite ---%	

As a matter of fact RS6000's running AIX is the required hardware for no
fewer than two major commercial firewall packages (as you pointed out
PORTUS is one). Folks seem happy enough with them.

/jtt

Indexed By Date	Previous:	mount from Internet From: gaus @ znanost . mz . hr (Damir Rajnovic)
Indexed By Date	Next:	Re: NetBSD telnet has source routing abilities by default? From: Bernhard . Schneck @ Physik . TU-Muenchen . DE
Indexed By Thread	Previous:	Re: mount from Internet From: Brent Chapman <brent @ mycroft . GreatCircle . COM>
Indexed By Thread	Next:	HELP ::::S/KEY vs Userids and passwords From: "Vegsund, Richard" <MISRHV @ infosvcs . tmh . tmc . edu>