--Boundary-3131860-0-0
Well... it's good that you supplied more details.
However, I'm still not sure what you want to find out!
The firewalls list tells why firewalls are desirable--
this is in addition to any O/S dependencies, and holds
true for all machines, including, of course, VMS.
Firewalls are a Good Idea, and can do things that cannot be done without them.
Alternative security for networks would included a hardware encryption device,
and also using only authenticating protocols, while disabling the rest.
Of course, this may not be viable, depending upon the use to which you want
to have the network.
You say you are "trying to alert" a company, whose sysadmin has
a "false sense of security." Well, how can the readers of the
firewalls list help you? What difficulties do you have that are
keeping your from informing a company about security risks and
vulnerabilities? It seems that you don't trust the sysadmin's
competence in securing the VAX machine--why? What evidence do you
have for your statement that his sense of security is "false"?
What does it mean, to YOU, in *this* situation, for the computer to be
"secure"?
-------- ____________
Comet <comet @
oracle .
com> /\ _________\ Oracle Corporation
Senior Technical Analyst \ \ \______ / 500 Oracle Parkway
Electronic Support Group \ \ \bi/ / / Box 659313
Worldwide Technical Support \ \ \/ / / Redwood Shores, CA 94065-5040
\ \/ / /
\ / /
\/_/
--Boundary-3131860-0-0
X-Orcl-Content-Type: message/rfc822
Received: 08 Aug 1994 14:42:04 Sent: 08 Aug 1994 14:39:09
From:"Jim Carroll" <firewalls-owner @
GreatCircle .
COM>
To: firewalls @
GreatCircle .
COM
Subject: VMS security - more detailed question
Reply-to: jimc @
e-Commerce .
Com
X-Orcl-Application: Sender: Firewalls-Owner @
GreatCircle .
COM
X-Orcl-Application: Precedence: bulk
Okay folks. My question seems to be getting a tad misconstrued,
possibly by the way I phrased it.
I'm not interested in the ol' VMS vs. Unix argument. I'm only
interested in 'secure' VMS, in isolation.
The company I'm trying to alert has a sysadmin who is confident that
he's locked up his VMS host. Yet, he's just now going through the
process of purchasing TCP/IP for it. Since TCP/IP is somewhat
foreign/new to him, I'm concerned that he is building up a false sense
of security, esp. when you consider that they have *no* firewall to
speak of.
Comments?
--
Jim Carroll -- jimc @
e-Commerce .
Com
e-Commerce, Inc., 1030 Kamato Road, Suite 201
Mississauga, Ontario, Canada L4W 4B6
Tel: +1 905 602 0863 Fax: +1 905 603 8402
--Boundary-3131860-0-0--
|
|
