>> The evaluated configuration does not include a network environment,
>As expected, since the orange book doesn't address networked environments.
>This of course makes the C2 rating less than useful for our use.
Righty-o; remember, folks, slapping a C2 (or even higher box) on an
unsecured network renders any NCSC evaluation moot.
As far as I'm concerned, I won't look at an NT firewall unless/until
the boys in Redmond announce that NT firewalls are protecting *their*
inhouse net. (Someone recently mentioned that Microsoft's racks of
NT servers are firewalled by BSDI Unix boxes.)