[Info-vax] DCL vulnerability write up on The Register

Stephen Hoffman seaohveh at hoffmanlabs.invalid
Thu Feb 22 11:40:18 EST 2018


On 2018-02-22 03:41:14 +0000, Kerry Main said:

> This is why med-large enterprises have FW zones. You would never 
> install a printer in the same FW zone as a server.

You'd be surprised what I find on some of those OpenVMS networks, then. 
  And where I've found some OpenVMS servers.   BTW... It's not just 
local SCS traffic.   OpenVMS clusters don't encrypt WAN traffic.

Lots of stuff missing from what-should-be-secure-by-default for an 
operating system being marketed as OpenVMS is marketed, and lots more 
is missing from what-should-be-documented in the security manual, too.  
 The security manual completely omits IP networking and distributed 
authentication and connection security, for instance.

The VSI IP stack will help with some of this, but there's a whole lot 
that app developers have to do to drag their own apps forward, and 
there's a whole lot ahead of VSI just to drag the default installation 
toward better security.


-- 
Pure Personal Opinion | HoffmanLabs LLC 




More information about the Info-vax mailing list