[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: Hack Microsoft NT C2 Rating?

To: [email protected]
Subject: Re: Hack Microsoft NT C2 Rating?
From: Jeff Barber <[email protected]>
Date: Thu, 28 Sep 1995 08:32:35 -0400 (EDT)
Cc: [email protected], [email protected]
In-Reply-To: <[email protected]> from "[email protected]" at Sep 27, 95 05:02:49 pm
Sender: [email protected]

[email protected] writes:

> I think that c2 is possibly the limit of orange/red bookishness that is 
> reasonable to work to. It is not a trivial level of security however, UNIX 
> despite all the claims has never been shipped as C2 secure as standard by a 
> mainstream vendor. Even requirements involving trivial effort but which are 
> extreemly important such as the writing of a users security guide have never 
> been taken seriously on any of the UNIX platforms on which I have worked.

A slight correction: SCO shipped the C2 version of their Open
Desktop 1.1 as the standard (in fact, only) version a few years
back.  The howls of outrage from their customer base (due to the
non-standard-Unix behavior) caused them to back off in the next
major release.  Last time I tried to install their software, C2
had been made an option.  (Of course, AFAIK, they never actually
completed a C2 evaluation.)

-- Jeff

References:
- Re: Hack Microsoft NT C2 Rating?
  - From: [email protected]

Prev by Date: STT_???
Next by Date: Netscpae & Fortezza (Or, say it Ain't so, Jeff?)
Prev by thread: Re: Hack Microsoft NT C2 Rating?
Next by thread: First Payments WG Meeting Announcement
Index(es):
- Date
- Thread