From owner-freebsd-hackers Mon Oct 13 11:20:05 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.7/8.8.7) id LAA12173 for hackers-outgoing; Mon, 13 Oct 1997 11:20:05 -0700 (PDT) (envelope-from owner-freebsd-hackers) Received: from unix.tfs.net (root@unix.tfs.net [199.79.146.60]) by hub.freebsd.org (8.8.7/8.8.7) with ESMTP id LAA12104 for ; Mon, 13 Oct 1997 11:19:58 -0700 (PDT) (envelope-from jbryant@argus.tfs.net) Received: from argus.tfs.net (pm3-p18.tfs.net [206.154.183.210]) by unix.tfs.net (8.8.5/8.8.5) with ESMTP id NAA12908; Mon, 13 Oct 1997 13:19:34 -0500 Received: (from jbryant@localhost) by argus.tfs.net (8.8.7/8.8.5) id NAA01596; Mon, 13 Oct 1997 13:19:43 -0500 (CDT) From: Jim Bryant Message-Id: <199710131819.NAA01596@argus.tfs.net> Subject: Re: C2 Trusted FreeBSD? In-Reply-To: <199710131136.MAA09217@monoid.cs.tcd.ie> from Colman Reilly at "Oct 13, 97 12:36:41 pm" To: careilly@monoid.cs.tcd.ie (Colman Reilly) Date: Mon, 13 Oct 1997 13:19:42 -0500 (CDT) Cc: freebsd-hackers@freebsd.org Reply-to: jbryant@tfs.net X-Windows: R00LZ!@# MS-Winbl0wz DR00LZ!@# X-Operating-System: FreeBSD 2.2.2-RELEASE #0: Wed Jul 9 01:01:24 CDT 1997 X-Mailer: ELM [version 2.4ME+ PL31H (25)] MIME-Version: 1.0 Content-Type: text/plain; charset=US-ASCII Content-Transfer-Encoding: 7bit Sender: owner-freebsd-hackers@freebsd.org X-Loop: FreeBSD.org Precedence: bulk In reply: > In any case, there's nothing in B1 to prevent you trusting an external > machine, so long as it come in over a secure enough channel. Consider the > external machine as part of the system. (Is there? Not on my reading of > the standard anyway.) as i recall, doesn't b1 limit external bandwidths? or is that b2? > Security comes down to no external connections and a marine guard at > the door of the Tempest vault, in most cases. 8-). > With a small nuclear device attached to your hardware in case the guards are > overcome. actually, thermite is sufficient... simply melt the hardware... no need for a large explosion... as i recall, most tactical computers have an internal thermite charge. jim -- All opinions expressed are mine, if you | "I will not be pushed, stamped, think otherwise, then go jump into turbid | briefed, debriefed, indexed, or radioactive waters and yell WAHOO !!! | numbered!" - #1, "The Prisoner" ------------------------------------------------------------------------------ Inet: jbryant@tfs.net AX.25: kc5vdj@wv0t.#neks.ks.usa.noam grid: EM28pw voice: KC5VDJ - 6 & 2 Meters AM/FM/SSB, 70cm FM. http://www.tfs.net/~jbryant ------------------------------------------------------------------------------ HF/6M/2M: IC-706-MkII, 2M: HTX-212, 2M: HTX-202, 70cm: HTX-404, Packet: KPC-3+