From owner-freebsd-security  Wed Apr 22 08:35:32 1998
Return-Path: <owner-freebsd-security@FreeBSD.ORG>
Received: (from majordom@localhost)
          by hub.freebsd.org (8.8.8/8.8.8) id IAA01944
          for freebsd-security-outgoing; Wed, 22 Apr 1998 08:35:32 -0700 (PDT)
          (envelope-from owner-freebsd-security@FreeBSD.ORG)
Received: from antipodes.cdrom.com (castles231.castles.com [208.214.165.231])
          by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id PAA01939
          for <freebsd-security@freebsd.org>; Wed, 22 Apr 1998 15:35:28 GMT
          (envelope-from mike@antipodes.cdrom.com)
Received: from antipodes.cdrom.com (localhost [127.0.0.1])
	by antipodes.cdrom.com (8.8.8/8.8.5) with ESMTP id IAA00455;
	Wed, 22 Apr 1998 08:31:29 -0700 (PDT)
Message-Id: <199804221531.IAA00455@antipodes.cdrom.com>
X-Mailer: exmh version 2.0zeta 7/24/97
To: Peter Jeremy <Peter.Jeremy@alcatel.com.au>
cc: freebsd-security@FreeBSD.ORG
Subject: Re: Using MD5 insted of DES for passwd ecnryption 
In-reply-to: Your message of "Wed, 22 Apr 1998 15:53:24 +1000."
             <199804220553.PAA03826@gsms01.alcatel.com.au> 
Mime-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Date: Wed, 22 Apr 1998 08:31:27 -0700
From: Mike Smith <mike@smith.net.au>
Sender: owner-freebsd-security@FreeBSD.ORG
Precedence: bulk

> 
> The more objects that need protecting, the more likely one is overlooked,
> allowing the system to subverted.

Until you got to this point, you weren't doing too badly.

Unfortunately, your assertion is unsupported (and effectively 
unsupportable).  But it's popular nonetheless because it strikes a 
chord with people that think of system security like they would think 
of guarding something physical.

Once you are certain you can secure a single file, you can secure any 
set of files.  Securing these files is a once-off process - you don't 
have to march back and forth around them warding off intruders, so the 
only effect of having more of them is the extra time taken to secure 
them in the first place.

If the securing process is automated, and scrutinised suitably, this is 
something that can be reduced to almost zero cost.

Given that there are already compromise targets which are linked 
shared, I think the whole point is pretty frivolous.
-- 
\\  Sometimes you're ahead,       \\  Mike Smith
\\  sometimes you're behind.      \\  mike@smith.net.au
\\  The race is long, and in the  \\  msmith@freebsd.org
\\  end it's only with yourself.  \\  msmith@cdrom.com



To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe security" in the body of the message