My only problem with Checkpoint's stuff is one of philosophy. I guess
I believe in the Axioms and Theorems stated in Cheswick & Bellovin:
"Exposed machines should run as few programs as possible;
the ones that are run should be as small as
By adding more code to the Sun, it seems to be the contra-positive
of this theorem. That worries me ... I've seen too many large systems
have all types of traps in them to feel comfortable about the Checkpoint
system. But, that is just my hesitation and thoughts.