Re: Is VMS losing the Financial Sector, also?
- From: Rob Brown <mylastname@xxxxxxxx>
- Date: Wed, 11 Jul 2007 18:39:00 GMT
On Wed, 11 Jul 2007, Larry Kilgallen wrote:
In article <Pine.LNX.4.61.0707111012460.9046@xxxxxxxxxxxxxxxxxxxxx>, Rob Brown <mylastname@xxxxxxxx> writes:On Wed, 11 Jul 2007, Bob Koehler wrote:
I can see how this would prevent me running a password grabber on a terminal I didn't own. But at the risk of exposing my own account, I could still run it against the terminal I am logged in at.
There is no risk of exposure to your account if you write the software properly.
Just a SMOP.
There is some risk of you being discovered through auditing.
True.
I don't see any protection against that if the potential victim does not avoid the trap.
That is what SET TERMINAL/PERMANENT/SECURE_SERVER is about.
That merely give the potential victim a means to avoid the trap, but does not enforce it.
Definitely not foolproof, but I can't think of anything that would improve it. BillG mentioned using HITMAN or the equivalent, which will help, but still leaves a window of opportunity.
--
Rob Brown b r o w n a t g m c l d o t c o m
G. Michaels Consulting Ltd. (780)438-9343 (voice)
Edmonton (780)437-3367 (FAX)
http://gmcl.com/
.
- Follow-Ups:
- Re: Is VMS losing the Financial Sector, also?
- From: Larry Kilgallen
- Re: Is VMS losing the Financial Sector, also?
- References:
- RE: Is VMS losing the Financial Sector, also?
- From: Main, Kerry
- Re: Is VMS losing the Financial Sector, also?
- From: Rob Brown
- Re: Is VMS losing the Financial Sector, also?
- From: Larry Kilgallen
- RE: Is VMS losing the Financial Sector, also?
- Prev by Date: Re: Is VMS losing the Financial Sector, also?
- Next by Date: Re: Is VMS losing the Financial Sector, also?
- Previous by thread: Re: Is VMS losing the Financial Sector, also?
- Next by thread: Re: Is VMS losing the Financial Sector, also?
- Index(es):
Relevant Pages
|
