Getting rid of the root account
Chris Hill
hill at faline.bellcore.com
Fri Jun 9 01:48:24 AEST 1989
John Haugh II writes:
>Oh - I've yet to read a text on programming which ever stated that it
>was possible to create a program of the size of an operating system
>which has no bugs.
>--
This is the crux of the matter: the problem is not just one of
security, but of writing code without errors which jeopardize
security. It is currently not possible to verify the amount
of code required for programs as large as operating systems.
Since it is impossible to write error free code, it is impossible
to create a completely secure system. Of course, it gets worse
than that: not only must the OS be proveably correct, the hardware
must be also - it must react in and ONLY in a predictable manner
to all possible stimuli. Discuss ways to maximize security, but
(for the time being) forget finding/eliminating ALL the loop holes.
Chris Hill
chris at nyquist.bellcore.com
More information about the Comp.unix.wizards
mailing list