Unix (In)Security

[Doug Gwyn <gwyn>]

> kindly send me the name of the person at Purdue that made that statement?

George Goble

> So what kind of flaw exist in Unix?

Same as in any substantial time-sharing system, plus its own brand due to
loopholes in the kernel implementation (every OS I have ever seen has had
these).  Most of the ones you hear rumors about in the media are well
known to UNIX old-timers and have been fixed long ago in their systems.
Many of these fixes eventually make it back into some UNIX "product".

See the latest BLTJ article by Morris et al. for several general methods.

> Maybe this is not the place to discuss such security issues

Probably not net.rumor, but in general you are better off hearing about
them along with everybody else than being ignorant while some antisocial
nerd breaks in and ruins your corporate files, or worse.