[Info-vax] DCL vulnerability write up on The Register
Stephen Hoffman
seaohveh at hoffmanlabs.invalid
Thu Feb 22 11:40:18 EST 2018
On 2018-02-22 03:41:14 +0000, Kerry Main said:
> This is why med-large enterprises have FW zones. You would never
> install a printer in the same FW zone as a server.
You'd be surprised what I find on some of those OpenVMS networks, then.
And where I've found some OpenVMS servers. BTW... It's not just
local SCS traffic. OpenVMS clusters don't encrypt WAN traffic.
Lots of stuff missing from what-should-be-secure-by-default for an
operating system being marketed as OpenVMS is marketed, and lots more
is missing from what-should-be-documented in the security manual, too.
The security manual completely omits IP networking and distributed
authentication and connection security, for instance.
The VSI IP stack will help with some of this, but there's a whole lot
that app developers have to do to drag their own apps forward, and
there's a whole lot ahead of VSI just to drag the default installation
toward better security.
--
Pure Personal Opinion | HoffmanLabs LLC
More information about the Info-vax
mailing list