Category : Various Text files
Archive : PRIMER.ZIP
Filename : PRIMER.PS
Output of file : PRIMER.PS contained in archive : PRIMER.ZIP
% This file is a NONconforming PostScript file.
% Copyright 1989 Stephan v. Bechtolsheim (unless otherwise stated)
% applies to various prologue files. Read documentation for details.
save
% dvitps: BEGIN including file "/usr/misc/TeX/lib/TeXPS/pro/texpre.pro"
/@bop0
{
PsPrintEnabled { (Pass0: Page ) print == flush } {pop} ifelse
} def
/@eop0 {
pop
} def
/@bop1
{
PsPrintEnabled { (Pass1: Page ) print == flush } {pop} ifelse
save
DviTranslateVector-X DviTranslateVector-Y translate
DviOrientationMatrix concat
Page-H-Offset Page-V-Offset translate
3 1 roll
translate
0 0 moveto
Draft-Flag { @Draft } if
/DriverDelta 0 def
} def
/@eop1 {
pop
showpage
restore
} def
/@end {
(Done!\n) print flush
} def
/@ReportVmStatus {
(\n@ReportVmStatus: ) print
print (: ) print
vmstatus
(max: ) print 20 string cvs print
(, used: ) print 20 string cvs print
(, level: ) print 20 string cvs print
(\n) print flush
} def
/@ReportVmStatusNew {
(VM: ) print
exch print
(, printer: ) print
/Vmfree vmstatus pop exch pop def Vmfree ( ) cvs print
(, driver: ) print dup ( ) cvs print
(, delta: ) print
Vmfree sub ( ) cvs print
(\n) print flush
} def
/@Draft {
gsave
Page-H-Offset neg Page-V-Offset neg translate
-45 rotate
-150 0 moveto
/Helvetica-Bold findfont
[120.0 0 0 -120.0 0 0 ] makefont setfont
(DRAFT) show
grestore
gsave
Page-H-Offset neg Page-V-Offset neg translate
300 -100 moveto
/Helvetica-Bold findfont
[60.0 0 0 -60.0 0 0 ] makefont setfont
Date-and-Time show
( :: ) show
Dvi-File-Name show
grestore
} def
% dvitps: END including file "/usr/misc/TeX/lib/TeXPS/pro/texpre.pro"
% dvitps: BEGIN including file "/usr/misc/TeX/lib/TeXPS/pro/pos.pro"
/a { rmoveto } def
/DriverDelta 0 def
/b { exch p dup /DriverDelta exch def 0 rmoveto } def
/c { p DriverDelta 4 sub dup /DriverDelta exch def 0 rmoveto } def
/d { p DriverDelta 3 sub dup /DriverDelta exch def 0 rmoveto } def
/e { p DriverDelta 2 sub dup /DriverDelta exch def 0 rmoveto } def
/f { p DriverDelta 1 sub dup /DriverDelta exch def 0 rmoveto } def
/g { p DriverDelta 0 rmoveto } def
/h { p DriverDelta 1 add dup /DriverDelta exch def 0 rmoveto } def
/i { p DriverDelta 2 add dup /DriverDelta exch def 0 rmoveto } def
/j { p DriverDelta 3 add dup /DriverDelta exch def 0 rmoveto } def
/k { p DriverDelta 4 add dup /DriverDelta exch def 0 rmoveto } def
/l { p -4 0 rmoveto } def
/m { p -3 0 rmoveto } def
/n { p -2 0 rmoveto } def
/o { p -1 0 rmoveto } def
/q { p 1 0 rmoveto } def
/r { p 2 0 rmoveto } def
/s { p 3 0 rmoveto } def
/t { p 4 0 rmoveto } def
/p { show } def
/w { 0 exch rmoveto } def
/x { 0 rmoveto } def
/y { 3 -1 roll p rmoveto } def
/u-string ( ) def
/u { u-string exch 0 exch put
u-string show
} def
/v { u-string exch 0 exch put
currentpoint
u-string show
moveto
} def
% dvitps: END including file "/usr/misc/TeX/lib/TeXPS/pro/pos.pro"
% dvitps: BEGIN including file "/usr/misc/TeX/lib/TeXPS/pro/rules.pro"
/z
{ /dy exch def
/dx exch def
currentpoint
currentpoint
transform round exch round exch itransform
newpath
moveto
dx 0 rlineto
0 dy rlineto
dx neg 0 rlineto
closepath
fill
moveto
}
def
/z
{ /dy exch def
/dx exch def
currentpoint
0.2 0.2 rmoveto
currentpoint
newpath
moveto
dx 0 rlineto
0 dy rlineto
dx neg 0 rlineto
closepath
fill
moveto
}
def
% dvitps: END including file "/usr/misc/TeX/lib/TeXPS/pro/rules.pro"
letter
/Dvi-File-Name (main.dvi) def
/Draft-Flag false def
/#copies 1 def
/NumCharsInPixelFonts 256 def
/HostName (hs.sei.cmu.edu) def
/PsPrintEnabled false def
/Page-H-Offset 0.000000 def
/Page-V-Offset 0.000000 def
/ExecPsConv {0.30 mul} def
/Date-and-Time (Tue Nov 20 09:54 1990) def
/DviTranslateVector-X 72.000 def
/DviTranslateVector-Y 720.000 def
/DviOrientationMatrix [ 0.240 0.000 0.000
-0.240 0.0 0.0 ] def
% dvitps: BEGIN including file "/usr/misc/TeX/lib/TeXPS/pro/pixel-fonts.pro"
/@newfont
{
/newname exch def
newname 7 dict def
newname load begin
/FontType 3 def
/FontMatrix [1 0 0 -1 0 0] def
/FontBBox [0 0 1 1] def
/BitMaps NumCharsInPixelFonts array def
/BuildChar {CharBuilder} def
/Encoding NumCharsInPixelFonts array def
0 1 NumCharsInPixelFonts 1 sub {Encoding exch /.undef put} for
end
newname newname load definefont pop
} def
/ch-image {ch-data 0 get} def
/ch-width {ch-data 1 get} def
/ch-height {ch-data 2 get} def
/ch-xoff {ch-data 3 get} def
/ch-yoff {ch-data 4 get} def
/ch-tfmw {ch-data 5 get} def
/CharBuilder
{
/ch-code exch def
/font-dict exch def
/ch-data font-dict /BitMaps get ch-code get def
ch-data null eq not
{
ch-tfmw 0
ch-xoff neg
ch-height ch-yoff sub neg
ch-width ch-xoff neg add
ch-yoff
setcachedevice
0 0 transform round exch round exch itransform translate
ch-width ch-height true
[1 0 0 1 ch-xoff ch-height ch-yoff sub] {ch-image} imagemask
}
if
} def
/@dc
{
/ch-code exch def
/ch-data exch def
currentfont /BitMaps get
ch-code ch-data put
currentfont /Encoding get
ch-code ( ) cvs % convert the character code to a string
cvn
ch-code exch put
} def
/@sf /setfont load def
% dvitps: END including file "/usr/misc/TeX/lib/TeXPS/pro/pixel-fonts.pro"
44 @bop0
/@F1 @newfont
@F1 @sf
[<
FFFFFCFFFFFCFFFFFC01FE0001FE0001FE0001FE0001FE0001FE0001FE0001FE0001FE0001
FE0001FE0001FE0001FE0001FE0001FE0001FE0001FE0001FE0001FE0001FE0001FE0001FE
0001FE0001FE0001FE0001FE0001FE0001FE0001FE0001FE0001FE0001FE0001FE0001FE00
01FE00FFFFFCFFFFFCFFFFFC>
22 41 -2 40 26] 73 @dc
[<
FFFE001FFFFEFFFE001FFFFEFFFE001FFFFE01C00000FF0001C00000FF0001E00001FF0000
E00001FE0000E00001FE0000700003FC0000700003FC0000780007FC00003FFFFFF800003F
FFFFF800001FFFFFF000001C000FF000001E001FF000000E001FE000000E003FE000000700
3FC0000007003FC0000007807FC0000003807F80000003C0FF80000001C0FF00000001C0FF
00000000E1FE00000000E1FE00000000F3FE0000000073FC0000000073FC000000003FF800
0000003FF8000000003FF8000000001FF0000000001FF0000000000FE0000000000FE00000
00000FE00000000007C00000000007C00000000003800000>
47 41 -2 40 52] 65 @dc
[<
001FE00000FFFC0003F01E0007E007000FC003801F8001C03F8001C07F8000007F0000007F
000000FF000000FF000000FF000000FF000000FF000000FF000000FF0000007F0000007F00
00007F800E003F801F001F803F800FC03F8007E03F8003F01F0000FFFE00001FF800>
26 27 -2 26 31] 99 @dc
[<
FFFC3FFEFFFC3FFEFFFC3FFE0FC00FE00FC00FC00FC01FC00FC03F800FC07F000FC07F000F
C0FE000FC1FC000FE3F8000FF3F8000FFFF0000FFFE0000FEFE0000FE7C0000FE3C0000FE0
E0000FE078000FE03C000FE01E000FE00F000FE007800FE01FFC0FE01FFC0FE01FFC0FE000
000FE000000FE000000FE000000FE000000FE000000FE000000FE000000FE000000FE00000
0FE000000FE00000FFE00000FFE00000FFE00000>
31 42 -2 41 36] 107 @dc
[<
FFFE3FFF80FFFE3FFF80FFFE3FFF800FE003F8000FE003F8000FE003F8000FE003F8000FE0
03F8000FE003F8000FE003F8000FE003F8000FE003F8000FE003F8000FE003F8000FE003F8
000FE003F8000FE003F8000FE003F8000FE003F8000FF003F8000FF003F8000FD803F8000F
D803F0000FCE03F000FFC787E000FFC1FFC000FFC07F0000>
33 27 -3 26 38] 110 @dc
[<
003FE00001FFFC0007F07F000FC01F801F800FC03F800FE03F800FE07F0007F07F0007F0FF
0007F8FF0007F8FF0007F8FF0007F8FF0007F8FF0007F8FF0007F8FF0007F87F0007F07F00
07F07F0007F03F0007E03F800FE01F800FC00FC01F8003F07E0001FFFC00003FE000>
29 27 -2 26 34] 111 @dc
[<
00078003C00000078003C000000FC007E000000FC007E000000FC007E000001FE00FF00000
1FE00FF000003FF01FF800003FF01FB800003FF01FB800007F783F3C00007F383F1C0000FF
383F1E0000FE1C7E0E0000FE1C7E0E0001FE1EFC0F0001FC0EFC070001FC0EFC070003F807
F8038003F807F8038007F807F803C007F003F001C007F003F001C00FE007E000E0FFFE7FFC
0FFEFFFE7FFC0FFEFFFE7FFC0FFE>
47 27 -1 26 50] 119 @dc
[<
FFFEFFFEFFFE0FE00FE00FE00FE00FE00FE00FE00FE00FE00FE00FE00FE00FE00FE00FE00F
E00FE00FE00FE00FE00FE00FE00FE00FE00FE00FE00FE00FE00FE00FE00FE00FE00FE00FE0
0FE00FE0FFE0FFE0FFE0>
15 42 -3 41 19] 108 @dc
[<
001FF00000FFFE0003F81F0007E003800FC001C01F8000E03F8000E07F0000007F0000007F
000000FF000000FF000000FF000000FFFFFFE0FFFFFFE0FF0007E0FF0007E07F0007E07F00
07C07F000FC03F800FC01F800F800F801F8007C01F0003F07E0001FFF800003FE000>
27 27 -2 26 32] 101 @dc
[<
003FC3FF8000FFF3FF8003F03BFF8007C00FF8000F8007F8001F8003F8003F8003F8007F00
03F8007F0003F8007F0003F800FF0003F800FF0003F800FF0003F800FF0003F800FF0003F8
00FF0003F800FF0003F8007F0003F8007F0003F8007F0003F8003F8003F8001F8003F8000F
C007F80007E00FF80003F03FF80000FFFBF800001FE3F800000003F800000003F800000003
F800000003F800000003F800000003F800000003F800000003F800000003F800000003F800
000003F800000003F80000003FF80000003FF80000003FF800>
33 42 -2 41 38] 100 @dc
[<
007FF00003FFFE000FC01F801F0007C03C0001E07C0001F0F80000F8F80000F8F80000F8F8
0000F87C0001F83E0007F01FFFFFF007FFFFE00FFFFFC01FFFFF801FFFFF003FFFF8003E00
00003C000000380000003800000018FF80001FFFE0000FC1F8001F80FC001F007C003F007E
007F007F007F007F007F007F007F007F007F007F007F007F003F007E101F007C381F80FC7C
0FC1FE7C03FFE7F800FF81F0>
30 40 -2 26 34] 103 @dc
[<
FFFE1FFFC3FFF8FFFE1FFFC3FFF8FFFE1FFFC3FFF80FE001FC003F800FE001FC003F800FE0
01FC003F800FE001FC003F800FE001FC003F800FE001FC003F800FE001FC003F800FE001FC
003F800FE001FC003F800FE001FC003F800FE001FC003F800FE001FC003F800FE001FC003F
800FE001FC003F800FE001FC003F800FE001FC003F800FF001FE003F800FF001FE003F800F
D801FF003F800FCC01F9803F000FC603F8C07F00FFC383F0707E00FFC1FFE03FFC00FFC07F
800FF000>
53 27 -3 26 57] 109 @dc
[<
001F8000FFC001F86003F87003F03807F03807F03807F03807F03807F03807F03807F00007
F00007F00007F00007F00007F00007F00007F00007F00007F00007F00007F00007F000FFFF
F0FFFFF01FFFF007F00003F00003F00001F00000F00000F00000F000007000007000007000
007000>
21 38 -1 37 27] 116 @dc
[<
C1FF00F7FFC0FF01E0FC0070F80038F00038F0003CE0003C60007C0000FC0003FC00FFF807
FFF81FFFF03FFFE07FFF807FFE00FFE000FC0000F80070F00070F000707000703800F01E03
F00FFFF003FE30>
22 27 -2 26 27] 115 @dc
/@F9 @newfont
@F9 @sf
[<
FFFFF0>
20 1 0 11 21] 123 @dc
[<
FFF3FFC00F003C000F003C000F003C000F003C000F003C000F003C000F003C000F003C000F
003C000F003C000F003C000F003C000F003C000FFFFC000F003C000F003C000F003C000F00
3C000F003C000F003C000F003C000F003C000F003C000F003C000F003C000F003C00FFF3FF
C0>
26 28 -2 27 31] 72 @dc
[<
03E00C181804300270026000E000E000E000E000FFFEE0066006700E300C18180C3003E0>
15 18 -1 17 18] 101 @dc
[<
FF801C001C001C001C001C001C001C001C001C001C001C001C001C001C001C001C001C001C
001C001C001C001C001C001C001C001C001C00FC00>
9 29 -1 28 12] 108 @dc
[<
FF80001C00001C00001C00001C00001C00001C00001C00001CF8001D06001E03001C01801C
01C01C01C01C00E01C00E01C00E01C00E01C00E01C00E01C00C01C01C01C01801E03001D86
00FC7C00>
19 26 -1 17 23] 112 @dc
[<
03F0000E1C00180600300300700380600180E001C0E001C0E001C0E001C0E001C0E001C060
01807003803003001806000E1C0003F000>
18 18 -1 17 21] 111 @dc
[<
7FE00E000E000E000E000E000E000E000E000E000E000E000E000E000E000E000E00FFE00E
000E000E000E000E000E000E0C061E071E018C00F8>
15 29 0 28 13] 102 @dc
[<
1F8700304E80603C40E01C40E01C40E01C40601C00701C00381C000F1C0001FC00001C0000
1C00301C00781C007838003070001FC000>
18 18 -2 17 21] 97 @dc
[<
03C00E200C101C101C101C101C101C101C001C001C001C001C001C001C001C001C00FFE03C
001C000C000C000400040004000400>
12 26 -1 25 16] 116 @dc
[<
60F0F060>
4 4 -4 3 12] 46 @dc
[<
07C00C301808300470046000E000E000E000E000E000E00060007030307818780C3007E0>
14 18 -2 17 18] 99 @dc
[<
FF801C001C001C001C001C001C001C001C001C001C001C001C001C001C001C001C00FC0000
0000000000000000000000000018003C003C001800>
9 29 -1 28 12] 105 @dc
[<
8FC0D060E010C018C0188018803800F80FF03FE07F80F800E010C010C010403030701F90>
13 18 -1 17 16] 115 @dc
[<
008020000180300001C0700001C0700003C0680003A0E80003A0E8000720C4000711C40007
11C4000E1182000E0B82000E0B82001C0B01001C0701001C0701803C0F0380FF3FCFE0>
27 18 -1 17 30] 119 @dc
[<
FFC01C001C001C001C001C001C001C001C001C001C001C001C001C301E781E781D30FCE0>
13 18 -1 17 16] 114 @dc
[<
FF9FF01C03801C03801C03801C03801C03801C03801C03801C03801C03801C03801C03801C
03801C03801E03801D03001C8700FC7C00>
20 18 -1 17 23] 110 @dc
[<
03E3F00E1B800C07801C07801C03801C03801C03801C03801C03801C03801C03801C03801C
03801C03801C03801C03801C0380FC1F80>
20 18 -1 17 23] 117 @dc
[<
01FFC0001C00001C00001C00001C00001C00001C00001C00FFFFC0C01C00401C00201C0030
1C00101C00081C000C1C00041C00021C00031C00011C00009C0000DC00005C00003C00003C
00001C00000C00000C00>
18 28 -1 27 21] 52 @dc
[<
07E01C10300C60046002C003C003C003C003C007600F601E307E18FC07F807F01FE03FB03E
08780C70066006600660062006200C10080C3003E0>
16 29 -2 27 21] 56 @dc
[<
00400000E00000E00000E00001D00001D00003D8000388000388000704000704000704000E
02000E02001C01001C01003C0380FF07E0>
19 18 -1 17 22] 118 @dc
/@F5 @newfont
@F5 @sf
[<
0FF000387C00783E00FC1F00FC1F80FC1F80781F80301F80001F80001F80001F80001F8000
1F80001F80001F80001F80001F80001F80001F80001F80001F80001F80001F80001F80001F
80001F8007FFF007FFF0>
20 28 -1 27 25] 74 @dc
[<
01FC000F03801E00C03C00607C0060780000F80000F80000F80000FFFFE0F801E0F801E078
01E07801C03C01C01C03800F070001FC00>
19 18 -1 17 22] 101 @dc
[<
FFF000FFF0001F00001F00001F00001F00001F00001F00001F00001F00001F00001F00001F
07001E8F801E8F801E8F80FE4700FE3E00>
17 18 -1 17 20] 114 @dc
[<
3E0000730000F98000F8C000F8600070600000700000300000300000780000780000FC0000
FC0000FE0001F60001F70003E30003E30007C18007C1800FC0C00F80C01F80E01F0060FFC1
FCFFC1FC>
22 26 -1 17 25] 121 @dc
[<
001FE00000FFFC0003F80E0007C003000F8001801F0000C03E0000C03E0000607E0000607C
000060FC000000FC000000FC000000FC000000FC000000FC000000FC000000FC0000007C00
00607E0000603E0000603E0000E01F0000E00F8001E007C003E003F80FE000FFF8E0001FE0
20>
27 28 -3 27 34] 67 @dc
[<
0FE1F83E13F8780BC0F807C0F807C0F807C07C07C03C07C01F07C007E7C0007FC00007C01C
07C03E07C03E07803E0F801C1E000FF800>
21 18 -1 17 23] 97 @dc
[<
FFE0FFE01F001F001F001F001F001F001F001F001F001F001F001F001F001F001F001F001F
001F001F001F001F001F001F001F001F00FF00FF00>
11 29 -1 28 13] 108 @dc
[<
FFE0FFE01F001F001F001F001F001F001F001F001F001F001F001F001F001F00FF00FF0000
00000000000000000000001E003F003F003F003F001E00>
11 30 -1 29 13] 105 @dc
[<
FFE7FFFFE7FF1F00F81F00F81F00F81F00F81F00F81F00F81F00F81F00F81F00F81F00F81F
00F81F80F81F80F81F40F0FF31E0FF0FC0>
24 18 -1 17 27] 110 @dc
[<
78FCFCFCFC78>
6 6 -3 5 13] 46 @dc
@F9 @sf
[<
FFF8000F80000F00000F00000F00000F00000F00000F00000F00000F02000F02000F02000F
02000F06000FFE000F06000F02000F02000F02000F02040F00040F00040F000C0F00080F00
080F00180F0078FFFFF8>
22 28 -2 27 27] 70 @dc
[<
FF0FF81E07C0040380060700020E00010E00009C0000F80000780000700000F00001D80001
C8000384000702000F03000F03807F8FF0>
21 18 0 17 22] 120 @dc
[<
FF8FF8FF801C01C01C001C01C01C001C01C01C001C01C01C001C01C01C001C01C01C001C01
C01C001C01C01C001C01C01C001C01C01C001C01C01C001C01C01C001C01C01C001E01E01C
001D019018001C83883800FC7E07E000>
33 18 -1 17 35] 109 @dc
[<
FF9FF01C03801C03801C03801C03801C03801C03801C03801C03801C03801C03801C03801C
03801C03801E03801D03001C87001C7C001C00001C00001C00001C00001C00001C00001C00
001C00001C00001C0000FC0000>
20 29 -1 28 23] 104 @dc
[<
07F8001C0E00300300600180C000C0C000C0C000C06001C03003801FFF801FFF001FF80018
000030000010000013C0000C30001C3800181800381C00381C00381C00381C001818001C38
800C38C003C4C0000380>
18 28 -1 18 21] 103 @dc
@F5 @sf
[<
01FC000F07801E03C03C01E07800F07800F0F800F8F800F8F800F8F800F8F800F8F800F878
00F07800F03C01E01C01C00F078001FC00>
21 18 -1 17 24] 111 @dc
[<
CFC0F830E018E01CC01CC01C007C07FC1FF87FF07FE0FF80F000E018E018601830781FD8>
14 18 -2 17 19] 115 @dc
@F9 @sf
[<
07C7E00C3700180F00300700700700600700E00700E00700E00700E00700E00700E0070060
0700700700300700180F000C170003E7000007000007000007000007000007000007000007
00000700000700000700003F00>
19 29 -2 28 23] 100 @dc
@F5 @sf
[<
FFE7FF3FF8FFE7FF3FF81F00F807C01F00F807C01F00F807C01F00F807C01F00F807C01F00
F807C01F00F807C01F00F807C01F00F807C01F00F807C01F00F807C01F80FC07C01F80FC07
C01F40F20780FF31E18F00FF0FC07E00>
37 18 -1 17 40] 109 @dc
[<
FFFFFF80FFFFFF800FC00F800FC003C00FC001C00FC001C00FC000C00FC000C00FC000E00F
C180600FC180600FC180000FC180000FC380000FFF80000FFF80000FC380000FC180000FC1
81800FC181800FC181800FC003800FC003800FC003000FC007000FC01F00FFFFFF00FFFFFF
00>
27 28 -2 27 31] 69 @dc
@F9 @sf
[<
FFF87038700838083C0C1C040E040F040700038003C041C040E040F04070603870387FFC>
14 18 -1 17 18] 122 @dc
@F5 @sf
[<
FFC07FFEFFC07FFE0C0007E00E000FE006000FC006000FC003001F8003001F8003FFFF8001
FFFF0001803F0000C07E0000C07E0000E0FE000060FC000061FC000031F8000031F800001B
F000001BF000001FF000000FE000000FE0000007C0000007C0000007C00000038000000380
00>
31 28 -2 27 36] 65 @dc
[<
FFFF0000FFFF00000FC000000FC000000FC000000FC000000FC000000FC000000FC180000F
C180000FC180000FC180000FC380000FFF80000FFF80000FC380000FC180000FC180000FC1
81800FC181800FC001800FC003800FC003800FC003000FC007000FC01F00FFFFFF00FFFFFF
00>
25 28 -2 27 30] 70 @dc
[<
03F9FE0F0FFE1C03F03C01F07801F07801F0F801F0F801F0F801F0F801F0F801F0F801F078
01F07801F03C01F01C03F00F07F001F9F00001F00001F00001F00001F00001F00001F00001
F00001F00001F0000FF0000FF0>
23 29 -2 28 27] 100 @dc
[<
FFFC0000FFFC00000FC000000FC000000FC000000FC000000FC000000FC000000FC000000F
C000000FC000000FC000000FC000000FFFFC000FC03F000FC00F800FC007C00FC007C00FC0
07E00FC007E00FC007E00FC007E00FC007E00FC007C00FC00F800FC03F80FFFFFE00FFFFF8
00>
27 28 -2 27 33] 80 @dc
[<
01F8FF0786FF0F01F81F01F81F00F81F00F81F00F81F00F81F00F81F00F81F00F81F00F81F
00F81F00F81F00F81F00F8FF07F8FF07F8>
24 18 -1 17 27] 117 @dc
[<
FFFC3FFFFFFC3FFF0FC003F00FC003F00FC003F00FC003F00FC003F00FC003F00FC003F00F
C003F00FC003F00FC003F00FC003F00FC003F00FFFFFF00FFFFFF00FC003F00FC003F00FC0
03F00FC003F00FC003F00FC003F00FC003F00FC003F00FC003F00FC003F0FFFC3FFFFFFC3F
FF>
32 28 -2 27 37] 72 @dc
[<
1C3F001EC1E01F80701F00781F003C1F003C1F003E1F003E1F003E1F003E1F003E1F003E1F
003C1F003C1F00781F80701FE1E01F3F801F00001F00001F00001F00001F00001F00001F00
001F00001F0000FF0000FF0000>
23 29 -1 28 27] 98 @dc
[<
FFC7FCFFC7FC1F03E01F07C01F0F801F0F001F1F001F3E001FBC001FFC001FF8001F70001F
18001F0C001F07001F03801F0FF81F0FF81F00001F00001F00001F00001F00001F00001F00
001F00001F0000FF0000FF0000>
22 29 -1 28 25] 107 @dc
@F9 @sf
[<
10F8001906001E03001C01801C01C01C00C01C00E01C00E01C00E01C00E01C00E01C00E01C
00C01C01C01C01801E03001D86001C7C001C00001C00001C00001C00001C00001C00001C00
001C00001C00001C0000FC0000>
19 29 -1 28 23] 98 @dc
@F5 @sf
[<
FFFFF800FFFFFF000FC01FC00FC007E00FC001F00FC000F80FC000F80FC0007C0FC0007C0F
C0007C0FC0007E0FC0007E0FC0007E0FC0007E0FC0007E0FC0007E0FC0007E0FC0007E0FC0
007C0FC0007C0FC000FC0FC000F80FC001F80FC001F00FC007E00FC01FC0FFFFFF00FFFFF8
00>
31 28 -2 27 37] 68 @dc
[<
00300000780000780000FC0000FC0001FE0001F60001F60003E30003E30007C18007C1800F
C0C00F80C01F80E01F0060FFC1FCFFC1FC>
22 18 -1 17 25] 118 @dc
[<
FFC0701FFFFFC0701FFF0C00F801F00C00F801F00C01FC01F00C01FC01F00C01FC01F00C03
E601F00C03E601F00C07C301F00C07C301F00C0F8181F00C0F8181F00C1F00C1F00C1F00C1
F00C1F00C1F00C3E0061F00C3E0061F00C7C0031F00C7C0031F00CF80019F00CF80019F00D
F0000DF00DF0000DF00DF0000DF00FE00007F0FFE00007FFFFC00003FF>
40 28 -2 27 45] 77 @dc
@F9 @sf
[<
804020201010101070F0F060>
4 12 -4 3 12] 44 @dc
@F5 @sf
[<
FFFC3FFFFFFC3FFF0FC007F00FC007E00FC00FC00FC01FC00FC01F800FC03F000FC07E000F
C0FE000FC0FC000FE1F8000FF3F8000FFBF0000FCFE0000FC7E0000FC3C0000FC1C0000FC0
E0000FC070000FC038000FC00C000FC006000FC003800FC001C00FC000E0FFFC07FFFFFC07
FF>
32 28 -2 27 37] 75 @dc
[<
003FE00001F07C0003C01E000F800F801F0007C03F0007E03E0003E07E0003F07E0003F07C
0001F0FC0001F8FC0001F8FC0001F8FC0001F8FC0001F8FC0001F8FC0001F8FC0001F87C00
01F07C0001F07E0003F03E0003E01E0003C01F0007C00F800F8003C01E0001F07C00003FE0
00>
29 28 -3 27 36] 79 @dc
@F9 @sf
[<
000600000006000000060000000F0000000F0000001F8000001E8000001E8000003C400000
3C4000003C4000007820000078200000F8300000F0100000F0100001F0080001E0080001E0
080003C0040003C0040003C0040007800200078002000F8003000F0001000F0001801F0003
C0FFE00FF0>
28 29 -1 27 31] 86 @dc
[<
FF8307FF801C030078000803007800080780780008078078000807807800080F407800080F
407800081E207800081E207800081E207800083C107800083C107800083C10780008780878
000878087800087808780008F004780008F004780008F004780009E002780009E00278000B
C00178000BC00178000BC00178000F8000F8000F8000F800FF8000FF80>
33 28 -2 27 38] 77 @dc
[<
83F800CC0C00D00200E00300C00180C001808001C08001C08001C00001C00003C00007C000
0F8000FF8007FF001FFE003FF8007FC0007C0000F80000F00000E00080E00080E00080E001
806001807003803005801C198007E080>
18 30 -2 28 23] 83 @dc
@F5 @sf
[<
00E00E0000E00E0000F01E0001F01F0001F83F0001F83F0003F83D8003EC7D8007EC79C007
CEF8C007C6F0C00F86F0600F83F0601F83E0701F03E0301F03E030FF8FF8FEFF8FF8FE>
31 18 -1 17 34] 119 @dc
44 @eop0
0 0 44 @bop1 262 307 a @F1 @sf(I)68 b(Ac)n(kno)n(wledgemen)n(ts)-665 91 y
@F9 @sf({)13 b(Help)h(of)f(a)h(lot)f(of)h(p)q(eople.)k({)c(copies)g(w)o
(ere)h(sen)o(t)g(out)e(to)h(48)f(p)q(eople)i(for)e(p)q(eer)i(review)-1390
91 y @F5 @sf(Jerry)f(Carlin.)22 b @F9 @sf(F)m(or)13 b(examples)h(from)f
(his)h(training)f(course.)-988 83 y @F5 @sf(Jo)q(e)i(Carlson.)21 b @F9 @sf
(F)m(or)13 b(help)h(with)g(sp)q(elling)f(and)h(grammar.)-949 83 y @F5 @sf
(James)h(Ellis.)22 b @F9 @sf(F)m(or)13 b(help)h(with)g(organization.)-764
83 y @F5 @sf(Alan)i(F)l(edeli.)-251 83 y(P)o(aul)f(Holbro)q(ok.)21 b @F9 @sf
(F)m(or)13 b(help)h(getting)g(this)g(do)q(cumen)o(t)g(distributed.)-1126
84 y @F5 @sf(Da)o(vid)h(Muir.)21 b @F9 @sf(F)m(or)12 b(help)g(with)g(sp)q
(elling,)g(grammar)f(and)i(commen)o(ts)f(ab)q(out)h(computer)-1328 49 y
(games.)-226 83 y @F5 @sf(Kevin)j(Ob)q(erman.)j @F9 @sf(F)m(or)14 b(help)g
(with)f(VMS)i(issues,)f(sp)q(elling)f(and)h(grammar.)-1270 83 y @F5 @sf
(Mik)o(e)i(Oda)o(w)o(a.)k @F9 @sf(F)m(or)14 b(help)g(with)f(the)i(micro)q
(computers)g(section.)-370 1670 y(44)-999 b
44 @eop1
43 @bop0
@F1 @sf
[<
FFFFF01FFFFEFFFFF01FFFFEFFFFF01FFFFE03FC00007F8003FC00007F8003FC00007F8003
FC00007F8003FC00007F8003FC00007F8003FC00007F8003FC00007F8003FC00007F8003FC
00007F8003FC00007F8003FC00007F8003FC00007F8003FC00007F8003FC00007F8003FC00
007F8003FC00007F8003FFFFFFFF8003FFFFFFFF8003FFFFFFFF8003FC00007F8003FC0000
7F8003FC00007F8003FC00007F8003FC00007F8003FC00007F8003FC00007F8003FC00007F
8003FC00007F8003FC00007F8003FC00007F8003FC00007F8003FC00007F8003FC00007F80
03FC00007F80FFFFF01FFFFEFFFFF01FFFFEFFFFF01FFFFE>
47 41 -3 40 54] 72 @dc
[<
0000FFE00000000FFFFE0000003FC07F800000FF001FE00001FC0007F00003F80003F80007
F00001FC000FF00001FE001FE00000FF001FE00000FF003FC000007F803FC000007F807FC0
00007FC07FC000007FC07F8000003FC0FF8000003FE0FF8000003FE0FF8000003FE0FF8000
003FE0FF8000003FE0FF8000003FE0FF8000003FE0FF8000003FE0FF8000003FE0FF800000
3FE07F8000003FC07F8000003FC07F8000003FC07FC000007FC03FC000007F803FC000007F
801FE00000FF001FE00000FF000FF00001FE0007F00001FC0003F80003F80001FC0007F000
007F001FC000003FC07F80000007FFFC00000000FFE00000>
43 41 -4 40 52] 79 @dc
[<
FFFF00FFFF00FFFF000FE0000FE0000FE0000FE0000FE0000FE0000FE0000FE0000FE0000F
E0000FE0000FE0000FE0000FE0000FE0000FE0000FF01C0FF03E0FF07F0FD87F0FD87FFFCE
3EFFC7FCFFC1F0>
24 27 -2 26 28] 114 @dc
[<
01FC03FC0FFF0FFC3F839FFC7F00DF807E007F80FE003F80FE003F80FE003F80FE003F807F
003F803F003F803F803F800FE03F8007FC3F8000FFFF80000FFF8000003F8000003F800000
3F8007003F800F803F801FC03F001FC07E001FC07E000F81F80007FFF00001FF8000>
30 27 -2 26 33] 97 @dc
[<
FFFFFFFE0000FFFFFFFFC000FFFFFFFFF00003F8001FF80003F80007FC0003F80003FE0003
F80001FF0003F80000FF0003F80000FF8003F80000FF8003F80000FF8003F80000FF8003F8
0000FF8003F80000FF8003F80000FF0003F80000FF0003F80001FE0003F80001FE0003F800
03FC0003F80007F00003FFFFFFE00003FFFFFE000003F800FFC00003F8001FE00003F8000F
F00003F80007F80003F80003FC0003F80003FC0003F80003FE0003F80001FE0003F80001FE
0003F80001FE0003F80003FE0003F80003FC0003F80003FC0003F80007FC0003F8000FF800
03F8001FF000FFFFFFFFC000FFFFFFFF8000FFFFFFF80000>
41 41 -3 40 49] 66 @dc
@F9 @sf
[<
007FF800000780000007800000078000000780000007800000078000000780000007800000
0780000007800000078000000FC000000F4000001F2000001E2000003C1000007C18000078
080000F8040000F0040001F0020003E0020003C0010007C00180078000800F8001E0FFF007
FC>
30 28 0 27 31] 89 @dc
[<
3C0000660000F30000F10000F0800000800000800000400000400000E00000E00000E00001
D00001D00003D8000388000388000704000704000704000E02000E02001C01001C01003C03
80FF07E0>
19 26 -1 17 22] 121 @dc
[<
30307878F8F8B0B080808080808040404040202010100808>
13 12 -6 28 21] 92 @dc
[<
003F800000E0E0000380380007001C000E000E001C0007003C00078038000380780003C078
0003C0700001C0F00001E0F00001E0F00001E0F00001E0F00001E0F00001E0F00001E0F000
01E0700001C0780003C0780003C0380003803C0007801C0007000E000E0007001C00038038
0000E0E000003F8000>
27 30 -2 28 32] 79 @dc
[<
FFFFE00F00780F003C0F001E0F001E0F000F0F000F0F000F0F000F0F000F0F000E0F001E0F
003C0F00780FFFE00F01F00F00780F003C0F001C0F001E0F001E0F001E0F001E0F001C0F00
3C0F00380F00F0FFFFC0>
24 28 -2 27 29] 66 @dc
[<
FF9FE01C0F801C0F001C0E001C1C001C3C001C38001C78001E70001DE0001CE0001C40001C
20001C10001C08001C0C001C0F001C3FC01C00001C00001C00001C00001C00001C00001C00
001C00001C00001C0000FC0000>
19 29 -1 28 22] 107 @dc
[<
808040402020101010100808080808086868F8F8F0F06060>
13 12 -1 28 21] 34 @dc
[<
FFE0FFE0>
11 2 0 9 14] 45 @dc
[<
FF80FFF01E001F000C001F0004001E0004001E0006003E0002003C0002003C0003007C0001
FFF800010078000180F8000080F0000080F0000041E0000041E0000041E0000023C0000023
C0000023C000001780000017800000178000000F0000000F0000000F000000060000000600
0000060000>
28 29 -1 28 31] 65 @dc
[<
001800180000180018000018001800003C003C00003C003C00003C003C00003E007C00007A
007A00007A007A00007900FA0000F100F10000F100F10000F100F10001E081E08001E081E0
8001E081E08003E043C04003C043C04003C043C04003C02780400780278020078027802007
801F00200F001F00100F001F00100F001F00101E001E00181F001F003CFFE0FFE0FF>
40 29 -1 27 43] 87 @dc
[<
7F87F80E01C00E01C00E01C00E01C00E01C00E01C00E01C00E01C00E01C00E01C00E01C00E
01C00E01C00E01C00E01C00E01C0FFFFC00E00000E00000E00000E00000E00000E01800E03
C00703C003018001C180007E00>
21 29 0 28 23] 12 @dc
[<
004000800100020006000C000C0018001800300030007000600060006000E000E000E000E0
00E000E000E000E000E000E000E000E000600060006000700030003000180018000C000C00
06000200010000800040>
10 42 -3 30 16] 40 @dc
[<
800040002000100018000C000C000600060003000300038001800180018001C001C001C001
C001C001C001C001C001C001C001C001C0018001800180038003000300060006000C000C00
18001000200040008000>
10 42 -2 30 16] 41 @dc
[<
07E01830201C401CF00EF80FF80FF80F700F000F000F000E001C001C003007E00060003000
18001C001C381E781E780E781E201C201C183007E0>
16 29 -2 27 21] 51 @dc
43 @eop0
0 0 43 @bop1 262 307 a @F1 @sf(H)68 b(Orange)23 b(Bo)r(ok)-517 91 y @F9 @sf
(Y)m(ou)14 b(ha)o(v)o(e)i(doubtlessly)f(b)o(y)h(no)o(w)f(heard)h(of)e(the)i
(\\Orange)g(Bo)q(ok")f(and)h(p)q(erhaps)g(of)f(the)-1431 50 y(whole)e
(rain)o(b)q(o)o(w)g(series.)-321 50 y(Muc)o(h)20 b(of)f(the)i(\\Orange)f
(Bo)q(ok")f(discusses)q 21 x(discretionary)h(and)g(mandatory)f(pro-)-1432
50 y(tection)f(mec)o(hanism)f(and)h(securit)o(y)g(lab)q(eling.)29 b
(Another)18 b(section)h(deals)f(with)f(\\co)o(v)o(ert)-1431 49 y(c)o
(hannels")f(for)h(data)f(to)g(leak)h(out.)26 b(While)16 b(most)g(of)g
(these)i(issues)g(are)f(not)f(imp)q(ortan)o(t)-1432 50 y(in)g(a)i(univ)o
(ersit)o(y)m(,)f(the)h(ideas)f(of)g(protecting)h(passw)o(ord)g(\014les)g
(\(ev)o(en)g(when)g(encrypted\))q(,)-1431 50 y(individual)o 14 x(accoun)o
(tabilit)o(y)c(of)g(users)j(and)e(passw)o(ord)h(aging)e(are)i(w)o(orth)f
(implemen)o(ting)-1433 50 y(in)e(an)h(unclassi\014ed)g(en)o(vironmen)o(t.)
133 2043 y(43)-999 b
43 @eop1
42 @bop0
@F1 @sf
[<
00007FF003000003FFFE0F00001FFFFF1F00003FF007BF0000FF8001FF0001FE0000FF0003
F80000FF0007F00000FF000FF00000FF001FE00000FF001FE00000FF003FC00000FF003FC0
0000FF007FC00000FF007F8001FFFFF87F8001FFFFF8FF8001FFFFF8FF8000000000FF8000
000000FF8000000000FF8000000000FF8000000000FF8000000000FF8000000000FF800000
00007F80000000007F80000007007FC0000007003FC0000007003FC000000F001FE000000F
001FE000000F000FF000001F0007F000003F0003F800003F0001FE0000FF0000FF8001FF00
003FF00FFF00001FFFFF0F000003FFFC070000007FE00300>
45 41 -4 40 54] 71 @dc
[<
003FC3FF8001FFF3FF8003F03BFF8007E00FF80007E007F8000FE007F8000FE003F8000FE0
03F8000FE003F8000FE003F8000FE003F8000FE003F8000FE003F8000FE003F8000FE003F8
000FE003F8000FE003F8000FE003F8000FE003F8000FE003F8000FE003F8000FE003F8000F
E003F8000FE003F800FFE03FF800FFE03FF800FFE03FF800>
33 27 -3 26 38] 117 @dc
@F9 @sf
[<
03FFFC00001F8000000F0000000F0000000F0000000F0000000F0000000F0000000F000000
0F0000000F0000000F0000000F0000000F0000000F0000000F0000000F0000000F0000000F
0000800F0020800F0020800F0020C00F0020400F0040400F0040600F00C0700F01C07FFFFF
C0>
27 28 -1 27 30] 84 @dc
/@F2 @newfont
@F2 @sf
[<
0003FF00C0001FFFC3C0007F80E7C001FC003FC003F0001FC007E0001FC00FC0001FC01F80
001FC03F00001FC03F00001FC07F00001FC07F00001FC07E000FFFFCFE000FFFFCFE000000
00FE00000000FE00000000FE00000000FE00000000FE00000000FE000000007E000000C07E
000000C07F000000C03F000001C03F000001C01F800003C00FC00003C007C00007C003F000
0FC001F8003FC0007F00F1C0001FFFC0C00003FE0040>
38 34 -3 33 44] 71 @dc
[<
387CFEFEFE7C38>
7 7 -4 6 16] 46 @dc
[<
7FFFE07FFFE001F80001F80001F80001F80001F80001F80001F80001F80001F80001F80001
F80001F80001F80001F80001F80001F80001F80001F80001F80001F80001F80001F80001F8
0001F80001F800FFF800FFF80001F800007800001800>
19 32 -4 31 28] 49 @dc
[<
FFE00FFFF8FFE00FFFF80600007F000600007F00030000FE00030000FE00038001FE000180
01FC00018001FC0000FFFFF80000FFFFF80000E007F800006007F00000600FF00000300FE0
0000300FE00000381FE00000181FC00000183FC000000C3F8000000C3F8000000E7F800000
067F00000006FF00000003FE00000003FE00000003FE00000001FC00000001FC00000000F8
00000000F800000000F8000000007000000000700000>
37 34 -2 33 42] 65 @dc
[<
00F80003FE0007C3000F83000F81800F81800F81800F81800F81800F80000F80000F80000F
80000F80000F80000F80000F80000F80000F80000F8000FFFF00FFFF003F80000F80000780
00078000038000038000018000018000018000018000>
17 32 -1 31 22] 116 @dc
[<
07E03F1FF87F7E0CF87E02F0FC01F0FC01F0FC01F0FC01F07E01F03F01F01FC1F003FDF000
3FF00001F00001F01E01F03F01F03F01E03F03E03F07C01FFF8007FC00>
24 22 -2 21 27] 97 @dc
[<
00FE0007FF800FC0E01F00603E00307E00007E00007C0000FC0000FC0000FC0000FC0000FC
0000FC00007C00007C01E07E03F03E03F01F03F00F83F007FFE000FF80>
20 22 -2 21 25] 99 @dc
[<
FFE0FFC0FFE0FFC01F003C001F007C001F00F8001F01F0001F01E0001F03E0001F07C0001F
0F80001FCF00001FFF00001F7E00001F1C00001F0E00001F0700001F0380001F01C0001F00
60001F0038001F00FF801F00FF801F0000001F0000001F0000001F0000001F0000001F0000
001F0000001F0000001F0000001F0000001F000000FF000000FF000000>
26 35 -2 34 30] 107 @dc
[<
FFFFFF8000FFFFFFF00007F003FC0007F0007E0007F0003F0007F0001F8007F0000FC007F0
0007E007F00007E007F00003F007F00003F007F00003F007F00003F807F00003F807F00003
F807F00003F807F00003F807F00003F807F00003F807F00003F807F00003F807F00003F007
F00003F007F00003F007F00007F007F00007E007F00007E007F0000FC007F0001F8007F000
3F0007F0007E0007F003FC00FFFFFFF000FFFFFF8000>
37 34 -2 33 43] 68 @dc
[<
FFE0FFE01F001F001F001F001F001F001F001F001F001F001F001F001F001F001F001F001F
001F00FF00FF0000000000000000000000000000001C003E007F007F007F003E001C00>
11 36 -2 35 16] 105 @dc
[<
7FF07FF0FFE07FF07FF0FFE00F800F801F000F800F801F000F800F801F000F800F801F000F
800F801F000F800F801F000F800F801F000F800F801F000F800F801F000F800F801F000F80
0F801F000F800F801F000F800F801F000F800F801F000F800F801F000F800F801F000F800F
801F000F800F801F00FFFFFFFFFF00FFFFFFFFFF000F800F8000000F800F8000000F800F80
00000F800F8000000F800F800C000F800F801E000F801F803F000F801F803F0007C01FC03F
0003E00FE01F0001F80FF80E00007FFE7FFC000007F80FF000>
43 35 -1 34 47] 14 @dc
[<
01FC3FC007FF3FC00F81BE001F00FE001F007E001F003E001F003E001F003E001F003E001F
003E001F003E001F003E001F003E001F003E001F003E001F003E001F003E001F003E001F00
3E001F003E00FF01FE00FF01FE00>
26 22 -2 21 31] 117 @dc
[<
FFE0FFE01F001F001F001F001F001F001F001F001F001F001F001F001F001F001F001F001F
001F001F001F001F001F001F001F001F001F001F001F001F001F001F00FF00FF00>
11 35 -2 34 16] 108 @dc
[<
1F0000007F80000069C00000FC600000FC300000FC3800007818000000180000000C000000
0C0000000E0000000E0000001F0000001F0000003F8000003F8000007FC000007CC000007C
C00000F8600000F8600001F0300001F0300003E0180003E0180007E01C0007C00C000FC00E
000F8006000F800600FFE01FE0FFE01FE0>
27 32 -1 21 30] 121 @dc
[<
FFFF800FF0FFFF803FF807F000FF0C07F000FE0607F001FC0607F001FC0007F001FC0007F0
01FC0007F001FC0007F001FC0007F001FC0007F001FC0007F001FC0007F003F80007F007F0
0007F00FE00007FFFF800007FFFFC00007F007F00007F001F80007F000FC0007F0007E0007
F0007F0007F0007F0007F0007F0007F0007F0007F0007F0007F0007F0007F0007E0007F000
FC0007F001F80007F007F000FFFFFFC000FFFFFE0000>
39 34 -2 33 42] 82 @dc
[<
00FE0007FFC00F83E01F01F03E00F87C007C7C007CFC007EFC007EFC007EFC007EFC007EFC
007EFC007E7C007C7C007C7C007C3E00F81E00F00F83E007FFC000FE00>
23 22 -2 21 28] 111 @dc
[<
C7F000EFFC00FC0E00F00700E00380E00380C00380C00780000F8001FF000FFF003FFE007F
F8007FE000FC0000F00300E00300E00300600700781F003FFF000FF300>
17 22 -2 21 22] 115 @dc
@F9 @sf
[<
804020101008080868F8F060>
5 12 -4 28 12] 39 @dc
[<
FFFFF00F01F00F00700F00300F00100F00180F00180F00080F00080F00080F00000F00000F
00000F00000F00000F00000F00000F00000F00000F00000F00000F00000F00000F00000F00
000F00000F8000FFF800>
21 28 -2 27 26] 76 @dc
[<
FF8004001C000C0008000C0008001C0008003C0008003C0008007C0008007C000800F40008
01E4000801E4000803C4000807C40008078400080F0400080F0400081E0400083C0400083C
04000878040008F8040008F0040009E0040009E004000BC004000F8004000F800E00FF007F
C0>
26 28 -2 27 31] 78 @dc
[<
FFFFFC0F003C0F000C0F00060F00060F00020F00020F00020F00010F02010F02000F02000F
02000F06000FFE000F06000F02000F02000F02000F02020F00020F00020F00060F00040F00
040F000C0F003CFFFFFC>
24 28 -2 27 28] 69 @dc
@F2 @sf
[<
FFFFF0FFFFF07FFFF03FFFF01FFFF00FFFF00E003807001803801801C01800E01800700000
3800003E00001F00000F800007C00007E00003F00003F00003F83803F87C01F8FE01F8FE03
F8FE03F8FE03F07C07F07007E03C1FC00FFF0003FC00>
21 32 -3 31 28] 50 @dc
[<
FFFFE0FFFFE003F80003F80003F80003F80003F80003F80003F80003F80003F80003F80003
F80003F80003F80003F80003F80003F80003F80003F80003F80003F80003F80003F80003F8
0003F80003F80003F80003F80003F80003F80003F800FFFFE0FFFFE0>
19 34 -1 33 21] 73 @dc
[<
FFE1FFC0FFE1FFC01F003E001F003E001F003E001F003E001F003E001F003E001F003E001F
003E001F003E001F003E001F003E001F003E001F003E001F003E001F803E001F803E001F40
3C001F307C00FF1FF800FF07E000>
26 22 -2 21 31] 110 @dc
[<
01FC3FC007FF3FC00F83BE001E00FE003E007E007C003E007C003E00FC003E00FC003E00FC
003E00FC003E00FC003E00FC003E00FC003E00FC003E007C003E007E003E003E003E001F00
7E000F81FE0007FFBE0001FC3E0000003E0000003E0000003E0000003E0000003E0000003E
0000003E0000003E0000003E0000003E0000003E000001FE000001FE00>
26 35 -2 34 31] 100 @dc
[<
000E0000000E0000001F0000001F0000003F8000003F8000007FC000007CC000007CC00000
F8600000F8600001F0300001F0300003E0180003E0180007E01C0007C00C000FC00E000F80
06000F800600FFE01FE0FFE01FE0>
27 22 -1 21 30] 118 @dc
[<
80FF80C7FFE0FF00F8FC003CF0003CE0001EE0001EC0001FC0001FC0001F00003F00003F00
007F0003FF003FFE03FFFE0FFFFC1FFFF83FFFF07FFFC07FFF00FFE000FF0000FC0000FC00
0CF8000CF8000C78001C78001C7C003C3C007C1F03FC07FF8C01FC04>
24 34 -3 33 31] 83 @dc
[<
FFE00000FFE000001F0000001F0000001F0000001F0000001F0000001F0000001F0000001F
0000001F0FC0001F3FF8001FE0FC001FC03E001F803F001F001F801F001F801F000FC01F00
0FC01F000FC01F000FC01F000FC01F000FC01F000FC01F000FC01F001F801F001F801F001F
001F803E001FF07C00FF3FF800FF0FE000>
26 32 -2 21 31] 112 @dc
[<
FFF000FFF0001F00001F00001F00001F00001F00001F00001F00001F00001F00001F00001F
00001F00001F00001F83C01E87E01E87E01EC7E01E67E0FE3FC0FE1F00>
19 22 -2 21 23] 114 @dc
@F9 @sf
[<
FFF00F000F000F000F000F000F000F000F000F000F000F000F000F000F000F000F000F000F
000F000F000F000F000F000F000F000F00FFF0>
12 28 -1 27 15] 73 @dc
[<
003FE000070000070000070000070000070000070000070007C7000C3700180F00300F0070
0700600700E00700E00700E00700E00700E00700E00700700700700700300F00180B000C33
0003C100>
19 26 -2 17 22] 113 @dc
[<
7F87FC000E01C0000E01C0000E01C0000E01C0000E01C0000E01C0000E01C0000E01C0000E
01C0000E01C0000E01C0000E01C0000E01C0000E01C0000E01C0000E01C000FFFFFC000E01
C0000E01C0000E01C0000E01C0000E01C0000E01C0000E03C1800703C3C00303E3C001C1B1
80007E1F00>
26 29 0 28 24] 11 @dc
@F2 @sf
[<
01FE000FFFC01E07F07801F87E01FCFF00FCFF00FEFF00FEFF00FE7E00FE3C00FE0000FC00
00FC0001F80001F00007C001FF0001FE00001F800007C00003E00003F01F03F01F03F83F81
F83F81F83F81F83F03F01E03F00F07E007FFC000FE00>
23 32 -2 31 28] 51 @dc
[<
03FFFFF80003FFFFF8000003F800000003F800000003F800000003F800000003F800000003
F800000003F800000003F800000003F800000003F800000003F800000003F800000003F800
000003F800000003F800000003F800000003F800000003F800000003F800000003F80000C0
03F800C0C003F800C0C003F800C0C003F800C0E003F801C0E003F801C06003F801807003F8
03807803F807807E03F80F807FFFFFFF807FFFFFFF80>
34 34 -2 33 39] 84 @dc
[<
FFE1FFC0FFE1FFC01F003E001F003E001F003E001F003E001F003E001F003E001F003E001F
003E001F003E001F003E001F003E001F003E001F003E001F003E001F803E001F803E001F40
3C001F307C001F1FF8001F07E0001F0000001F0000001F0000001F0000001F0000001F0000
001F0000001F0000001F0000001F0000001F000000FF000000FF000000>
26 35 -2 34 31] 104 @dc
[<
00FF0003FFC00FC0701F00303E00187E00007C00007C0000FC0000FC0000FC0000FFFFF8FF
FFF8FC00F8FC00F87C00F87C00F03E01F01E01E00F87C007FF8000FE00>
21 22 -2 21 26] 101 @dc
[<
FFF00000C0FFF00001C006000003C006000003C006000007C00600000FC00600001FC00600
003FC00600007FC00600007FC0060000FFC0060001FEC0060003FCC0060007F8C0060007F0
C006000FF0C006001FE0C006003FC0C006007F80C00600FF00C00600FE00C00601FE00C006
03FC00C00607F800C0060FF000C0060FE000C0061FE000C0063FC000C0067F8000C006FF00
00C007FE0000C007FC0000C0FFFC001FFEFFF8001FFE>
39 34 -2 33 44] 78 @dc
[<
FFFF8000FFFF800007F0000007F0000007F0000007F0000007F0000007F0000007F0000007
F0000007F0000007F0000007F0000007F0000007F0000007FFFF0007FFFFE007F007F007F0
01FC07F000FC07F0007E07F0007E07F0007F07F0007F07F0007F07F0007F07F0007F07F000
7E07F0007E07F000FC07F001FC07F007F0FFFFFFE0FFFFFF00>
32 34 -2 33 38] 80 @dc
@F9 @sf
[<
FFFE7FFE3FFE100218010C0106010300018000C0006000700038001C001C000E000E000F70
07F807F807F80FF00F400E400C201C183007C0>
16 28 -2 27 21] 50 @dc
42 @eop0
0 0 42 @bop1 262 307 a @F1 @sf(G)68 b(Guest)23 b(Accoun)n(ts)-599 91 y
@F9 @sf(The)17 b(computer)h(cen)o(ter)g(guest)g(p)q(olicy)f(is)g(among)e
(the)j(most)f(hotly)f(debated)i(topics)g(at)-1432 50 y(man)o(y)13 b
(computer)i(cen)o(ters.)21 b(F)m(rom)13 b(a)h(securit)o(y)i(standp)q(oin)o
(t,)d(it)h(should)g(b)q(e)h(ob)o(vious)f(that)-1432 50 y(an)d(attac)o(k)o
(er)h(who)f(has)g(access)q 13 x(to)g(a)g(guest)h(accoun)o(t)g(can)g(break)f
(in)o(to)g(a)g(computer)h(facilit)o(y)-1433 50 y(more)h(easily)m(.)-213
116 y @F2 @sf(G.1)55 b(A)n(ttac)n(k)19 b(Di\016cult)n(y)f(Ratios)-729 76 y
@F9 @sf(Basically)10 b(it)i(is)f(a)g(factor)h(of)f(ten)h(easier)g(to)g
(break)g(in)o(to)f(a)g(mac)o(hine)g(where)i(y)o(ou)e(can)h(easily)-1432
50 y(get)i(as)g(far)g(as)h(a)f(login)e(prompt)i(that)h(one)f(where)i(y)o
(ou)d(can't.)19 b(Being)c(able)f(to)g(reac)o(h)h(the)-1431 50 y(mac)o
(hine)e(through)g(a)g(standard)h(net)o(w)o(orking)f(discipline)g(and)g(op)q
(en)h(connections)h(to)e(the)-1431 50 y(daemons)g(is)g(w)o(orth)h(another)g
(order)g(of)f(magnitude.)18 b(Access)d(to)f(a)f(mac)o(hine)g(that)h(is)f
(run)-1431 50 y(b)o(y)k(the)i(same)f(group)g(is)g(w)o(orth)g(another)h
(factor)f(of)f(three)i(and)f(access)q 19 x(to)g(a)g(mac)o(hine)-1432 49 y
(on)e(the)g(same)h(LAN)f(w)o(ould)g(gran)o(t)g(a)g(factor)g(of)f(three)j
(b)q(ey)o(ond)f(that.)25 b(Ha)o(ving)15 b(a)h(guest)-1431 50 y(accoun)o(t)
11 b(on)f(the)h(target)g(mac)o(hine)g(mak)o(es)f(the)h(attac)o(k)g(still)f
(another)h(order)g(of)f(magnitude)-1432 50 y(easier.)-51 50 y(Essen)o
(tially)m(,)h(ha)o(ving)f(a)h(guest)i(accoun)o(t)f(on)f(the)h(target)g
(simpli\014es)f(an)g(attac)o(k)h(at)f(least)-1431 50 y(a)i(thousand)h
(fold)f(from)g(ha)o(ving)g(to)h(start)g(cold.)-764 116 y @F2 @sf(G.2)55 b
(Individual)18 b(Sp)r(onsors)-629 76 y @F9 @sf(I)c(strongly)f(suggest)i
(requiring)f(eac)o(h)h(guest)g(to)f(ha)o(v)o(e)f(an)h(individual)e(sta\013)j
(sp)q(onsor)g(who)-1432 50 y(tak)o(es)f(resp)q(onsibilit)o(y)f(for)h(the)g
(actions)g(of)f(his)h(guest.)-855 116 y @F2 @sf(G.3)55 b(The)19 b(No)f
(Guest)g(P)n(olicy)-662 77 y @F9 @sf(In)13 b(cen)o(ters)q 15 x(that)h
(prohibit)f(guests,)h(sta\013)g(mem)o(b)q(ers)h(often)f(share)g(their)g
(passw)o(ords)h(with)-1432 50 y(their)g(guests.)24 b(Since)15 b(these)i
(are)f(generally)f(privileged)g(accoun)o(ts,)h(this)f(is)g(a)g(signi\014can)o
(t)-1432 50 y(danger.)561 1066 y(42)-999 b
42 @eop1
41 @bop0
@F1 @sf
[<
FFFFFC0000FFFFFC0000FFFFFC000003FC00000003FC00000003FC00000003FC00000003FC
00000003FC00000003FC00000003FC00000003FC00000003FC03800003FC03800003FC0380
0003FC03800003FC07800003FC07800003FC1F800003FFFF800003FFFF800003FFFF800003
FC1F800003FC07800003FC07800003FC03800003FC03807003FC03807003FC03807003FC00
00F003FC0000E003FC0000E003FC0000E003FC0001E003FC0001E003FC0003E003FC000FE0
03FC003FC0FFFFFFFFC0FFFFFFFFC0FFFFFFFFC0>
36 41 -3 40 43] 70 @dc
[<
007FFFFFE000007FFFFFE000007FFFFFE00000003FC0000000003FC0000000003FC0000000
003FC0000000003FC0000000003FC0000000003FC0000000003FC0000000003FC000000000
3FC0000000003FC0000000003FC0000000003FC0000000003FC0000000003FC0000000003F
C0000000003FC0000000003FC0000000003FC0000000003FC0000000003FC0000000003FC0
0000E0003FC000E0E0003FC000E0E0003FC000E0E0003FC000E0E0003FC000E0F0003FC001
E0F0003FC001E070003FC001C078003FC003C078003FC003C07E003FC007C07F803FC03FC0
7FFFFFFFFFC07FFFFFFFFFC07FFFFFFFFFC0>
43 40 -2 39 48] 84 @dc
[<
FFFE3FFF80FFFE3FFF80FFFE3FFF800FE003F8000FE003F8000FE003F8000FE003F8000FE0
03F8000FE003F8000FE003F8000FE003F8000FE003F8000FE003F8000FE003F8000FE003F8
000FE003F8000FE003F8000FE003F8000FE003F8000FF003F8000FF003F8000FF803F8000F
F803F0000FEE03F0000FE787E0000FE1FFC0000FE07F00000FE00000000FE00000000FE000
00000FE00000000FE00000000FE00000000FE00000000FE00000000FE00000000FE0000000
0FE00000000FE0000000FFE0000000FFE0000000FFE0000000>
33 42 -3 41 38] 104 @dc
[<
03FE00000FFFC0003E0FE0007C03F0007E03F800FF01FC00FF01FE00FF01FE00FF01FE007E
01FE001801FE000001FE000001FE000001FE000001FE000001FE000001FE000001FE000001
FE000001FE000001FE000001FE000001FE000001FE000001FE000001FE000001FE000001FE
000001FE000001FE000001FE000001FE000001FE000001FE000001FE000001FE000001FE00
0001FE0001FFFFF001FFFFF001FFFFF0>
28 41 -3 40 36] 74 @dc
[<
0FC00000003FE00000007C78000000FE3C000000FE1E000000FE0E000000FE0F0000007C07
0000003807800000000380000000038000000001C000000001C000000003E000000003E000
000007F000000007F00000000FF80000000FF80000000FF80000001FDC0000001FDC000000
3FDE0000003F8E0000007F8F0000007F070000007F07000000FE03800000FE03800001FC01
C00001FC01C00003FC01E00003F800E00007F800F00007F000700007F0007000FFFE03FF80
FFFE03FF80FFFE03FF80>
33 39 -1 26 36] 121 @dc
[<
7FFF807FFF807FFF8007F00007F00007F00007F00007F00007F00007F00007F00007F00007
F00007F00007F00007F00007F00007F00007F00007F00007F00007F00007F00007F000FFFF
C0FFFFC0FFFFC007F00007F00007F00007F00007F00007F00007F00007F03E07F07F03F07F
03F87F01F87F00FE3E003FFC0007F0>
24 42 -2 41 21] 102 @dc
@F9 @sf
[<
3E006180F1C0F0C060E000E000E000E000E000E000E000E000E000E000E000E000E000E000
E000E000E000E000E000E000E00FE0000000000000000000000000000000C001E001E000C0
>
11 37 3 28 13] 106 @dc
[<
FFF07FF00F001F800F001F000F001E000F003C000F003C000F0078000F00F8000F00F0000F
01E0000F01E0000F83C0000F4780000F2780000F2F00000F1F00000F0E00000F0400000F02
00000F0100000F0080000F0040000F0020000F0010000F0008000F000C000F000F00FFF03F
E0>
28 28 -2 27 32] 75 @dc
[<
FFF80F80070007000700070007000700070007000700070007000700070007000700070007
0007000700070007000700C7003F0007000300>
13 28 -4 27 21] 49 @dc
41 @eop0
0 0 41 @bop1 262 307 a @F1 @sf(F)69 b(The)22 b(Jo)n(y)h(of)g(Broadcast)-757
91 y @F9 @sf(The)15 b(ma)r(jorit)o(y)f(of)h(the)h(lo)q(cal)f(area)g(nets)h
(\(LAN's\))g(use)g(a)f(system)h(called)g(broadcast.)22 b(It)-1431 50 y(is)
17 b(somewhat)g(lik)o(e)g(screaming)h(in)f(a)g(cro)o(wded)h(ro)q(om.)29 b
(Eac)o(h)18 b(p)q(erson)g(tends)h(to)e(try)h(to)-1432 50 y(ignore)13 b
(messages)i(that)f(w)o(eren't)h(mean)o(t)e(for)h(them.)-768 50 y(In)9 b
(this)g(t)o(yp)q(e)h(of)f(en)o(vironmen)o(t,)g(ea)o(v)o(es-dropping)h(is)f
(undetectable.)18 b(Often)10 b(passw)o(ords)-1431 49 y(are)17 b(sen)o(t)g
(unencrypte)q(d)h(b)q(et)o(w)o(een)g(mac)o(hines.)27 b(Suc)o(h)18 b(passw)o
(ords)f(are)h(fair)e(game)g(to)h(an)-1432 50 y(attac)o(k)o(er.)-96 50 y(V)m
(arious)9 b(cryptographic)h(solutions)g(including)f(digital)o 9 x
(signature)h(and)g(one)g(time)f(k)o(eys)-1431 50 y(ha)o(v)o(e)g(b)q(een)i
(used)g(to)f(com)o(bat)g(this)g(problem.)16 b(Kerb)q(eros,)c(dev)o(elop)q
(ed)f(at)f(the)g(MIT)g(A)o(thena)-1431 50 y(pro)r(ject)i(is)g(a)o(v)n(ail)o
(able)e(without)h(cost)i(and)e(presen)o(ts)q 13 x(one)h(of)f(the)h(few)g
(promising)e(p)q(oten)o(tial)-1432 49 y(solutions)j(to)h(the)g(broadcast)h
(problem.)50 1944 y(41)-999 b
41 @eop1
40 @bop0
@F1 @sf
[<
FFFFFFFFF0FFFFFFFFF0FFFFFFFFF003FC001FF803FC0003F803FC0001F803FC0000F803FC
00007803FC00003803FC00003C03FC00001C03FC00001C03FC00001C03FC01C01C03FC01C0
0E03FC01C00E03FC01C00E03FC03C00003FC03C00003FC0FC00003FFFFC00003FFFFC00003
FFFFC00003FC0FC00003FC03C00003FC03C00003FC01C03803FC01C03803FC01C03803FC01
C07803FC00007003FC00007003FC00007003FC0000F003FC0001F003FC0001F003FC0007F0
03FC001FE0FFFFFFFFE0FFFFFFFFE0FFFFFFFFE0>
39 41 -3 40 45] 69 @dc
[<
0E01FC00000F07FF80000F9E07E0000FF803F0000FF001F8000FE000FC000FE000FE000FE0
007F000FE0007F000FE0007F000FE0007F800FE0007F800FE0007F800FE0007F800FE0007F
800FE0007F800FE0007F800FE0007F000FE0007F000FE0007F000FE000FE000FE000FC000F
F000F8000FF801F0000FFE07E0000FE7FF80000FE1FE00000FE00000000FE00000000FE000
00000FE00000000FE00000000FE00000000FE00000000FE00000000FE00000000FE0000000
0FE00000000FE0000000FFE0000000FFE0000000FFE0000000>
33 42 -2 41 38] 98 @dc
[<
0FF0003FFC007C3E00FE1F00FE1F80FE0FC0FE0FE07C0FE0000FE0000FE0000FE0000FE000
0FE0000FE0000FE0000FE0000FE0000FE0000FE0000FE0000FE0000FE0000FE0000FE0000F
E0000FE0000FE0000FE0000FE0000FE0000FE0000FE0000FE0000FE0000FE0000FE001FFE0
01FFE001FFE0000000000000000000000000000000000000000000000700000F80001FC000
3FE0003FE0003FE0001FC0000F80000700>
19 55 4 42 21] 106 @dc
[<
00003FF800000003FFFF0000000FFFFFC000003FF007E00000FF8000F80001FE00003C0003
FC00001E0007F000000E000FF0000007001FE0000007001FE0000003803FC0000003803FC0
000003807FC0000003807F80000000007F8000000000FF8000000000FF8000000000FF8000
000000FF8000000000FF8000000000FF8000000000FF8000000000FF8000000000FF800000
00007F80000000007F80000003807FC0000003803FC0000003803FC0000007801FE0000007
801FE0000007800FF000000F8007F000001F8003FC00003F8001FE00007F8000FF8001FF80
003FF007DF80000FFFFF87800003FFFE038000003FF00180>
41 41 -4 40 50] 67 @dc
[<
FFFFF00000FFFFF00000FFFFF0000003FC00000003FC00000003FC00000003FC00000003FC
00000003FC00000003FC00000003FC00000003FC00000003FC00000003FC00000003FC0000
0003FC00000003FC00000003FC00000003FC00000003FFFFFE0003FFFFFF8003FC003FE003
FC000FF003FC0007F803FC0007FC03FC0003FC03FC0003FE03FC0003FE03FC0003FE03FC00
03FE03FC0003FE03FC0003FE03FC0003FE03FC0003FC03FC0007FC03FC0007F803FC000FF0
03FC003FE0FFFFFFFFC0FFFFFFFF00FFFFFFF800>
39 41 -3 40 47] 80 @dc
[<
FFFEFFFEFFFE0FE00FE00FE00FE00FE00FE00FE00FE00FE00FE00FE00FE00FE00FE00FE00F
E00FE00FE00FE00FE00FE0FFE0FFE0FFE0000000000000000000000000000007000F801FC0
3FE03FE03FE01FC00F800700>
15 43 -3 42 19] 105 @dc
@F5 @sf
[<
FFE7FFFFE7FF1F00F81F00F81F00F81F00F81F00F81F00F81F00F81F00F81F00F81F00F81F
00F81F80F81F80F81F40F01F31E01F0FC01F00001F00001F00001F00001F00001F00001F00
001F00001F0000FF0000FF0000>
24 29 -1 28 27] 104 @dc
[<
03F8000E0E001C03003C0180780180780000F80000F80000F80000F80000F80000F8000078
0E00781F003C1F001C1F000E0E0003FC00>
17 18 -2 17 21] 99 @dc
@F5 @sf
[<
83FC00EFFF00FC03C0F001C0E000E0C000E0C000F0C000F00000F00001F00003F0007FE007
FFE00FFFC03FFF803FFF007FFE00FFE000FE0000F80000F00060F00060F000E07000E07801
E03C07E01FFEE007F820>
20 28 -3 27 27] 83 @dc
[<
FFE000FFE0001F00001F00001F00001F00001F00001F00001F3F001FC1E01F80F01F00781F
007C1F003C1F003E1F003E1F003E1F003E1F003E1F003E1F003C1F007C1F00781F80F0FFE1
E0FF3F80>
23 26 -1 17 27] 112 @dc
@F9 @sf
[<
000007C0FFF01C200F003C200F0038100F0078100F0078100F0078000F0078000F0078000F
0078000F0078000F0078000F00F0000F00E0000F03C0000FFF00000F01E0000F0078000F00
3C000F001C000F001E000F001E000F001E000F001E000F001C000F003C000F0078000F01E0
00FFFF0000>
28 29 -2 27 31] 82 @dc
@F5 @sf
[<
03F007980F081F0C1F0C1F0C1F0C1F001F001F001F001F001F001F001F001F00FFFC3FFC0F
000F00070007000300030003000300>
14 26 -1 25 19] 116 @dc
@F5 @sf
[<
FFFC01FE00FFFC07C3000FC00FC1800FC01F81800FC01F81800FC01F80000FC01F80000FC0
1F80000FC01F80000FC01F80000FC01F80000FC03F00000FC03E00000FC07C00000FFFF000
000FC03E00000FC00F80000FC007C0000FC007E0000FC007E0000FC007E0000FC007E0000F
C007E0000FC007C0000FC00F80000FC03F0000FFFFFE0000FFFFF00000>
33 28 -2 27 36] 82 @dc
[<
FFE0FFE0FFE0FFE0>
11 4 -1 10 16] 45 @dc
@F5 @sf
[<
7FF8007FF8000F80000F80000F80000F80000F80000F80000F80000F80000F80000F80000F
80000F80000F80000F8000FFF800FFF8000F80000F80000F80000F80000F80000F83800F87
C00787C003C7C001E380007F00>
18 29 0 28 15] 102 @dc
@F9 @sf
[<
001F00000070C00000C02000018010000380100007800800070008000F0004000F0004000F
0004000F0004000F0004000F0004000F0004000F0004000F0004000F0004000F0004000F00
04000F0004000F0004000F0004000F0004000F0004000F0004000F0004000F0004000F000E
00FFF07FC0>
26 29 -2 27 31] 85 @dc
[<
001FC00000E0300001800800070004000E0002001C0001001C000100380000807800008078
00008070000080F0000000F0000000F0000000F0000000F0000000F0000000F0000000F000
0000700000807800008078000080380001801C0001801C0003800E00038007000780018019
8000E06180001F8080>
25 30 -2 28 30] 67 @dc
[<
07E00C301818300C300C700E60066006E007E007E007E007E007E007E007E007E007E007E0
07E007E00760066006700E300C300C18180C3003C0>
16 29 -2 27 21] 48 @dc
40 @eop0
0 0 40 @bop1 262 307 a @F1 @sf(E)68 b(Ob)t(ject)22 b(Co)r(de)g(Protection)
-835 91 y @F9 @sf(T)m(o)9 b(k)o(eep)i(ob)r(ject)h(co)q(de)f(safe)g(from)f
(h)o(uman)g(attac)o(k)o(ers)h(and)f(virus,)h(a)f(v)n(ariet)o(y)g(of)g(tec)o
(hniques)-1430 50 y(ma)o(y)i(b)q(e)j(emplo)o(y)o(ed.)-328 91 y @F5 @sf
(Chec)o(ksums.)k @F9 @sf(Sa)o(ving)c(the)i(c)o(hec)o(ksums)h(of)d(eac)o(h)i
(of)e(the)i(system)g(\014les)f(in)g(a)g(protected)-1327 50 y(area)d(an)g
(p)q(erio)q(dically)e(comparing)h(the)i(stored)f(c)o(hec)o(ksum)h(with)f
(those)g(computed)-1328 50 y(from)f(the)h(\014le's)g(curren)o(t)h(con)o
(ten)o(ts)f(is)g(a)f(common)f(and)i(mo)q(derately)f(e\013ect)q(iv)o(e)h(w)o
(a)o(y)-1329 50 y(to)h(detect)i(the)e(alteration)f(of)h(system)g(\014les.)
-805 83 y @F5 @sf(Source)g(Comparisons.)20 b @F9 @sf(Rather)15 b(than)g
(just)h(using)f(a)g(c)o(hec)o(ksum)h(the)g(complete)f(\014les)-1328 49 y
(ma)o(y)e(b)q(e)i(compared)f(against)f(a)g(kno)o(wn)h(set)g(of)g(sources.)
19 b(This)14 b(requires)h(a)f(greater)-1328 50 y(storage)h(commitmen)o(t.)
-487 83 y @F5 @sf(File)h(Prop)q(ert)o(ies.)k @F9 @sf(Rather)10 b(the)h
(computing)e(a)h(c)o(hec)o(ksum,)h(some)g(facilit)o(y)o 9 x(store)g
(certain)-1328 50 y(attributes)g(of)f(\014les.)17 b(Among)10 b(these)h
(are)g(the)g(length)f(and)g(lo)q(cation)f(on)h(the)h(ph)o(ysical)-1329 50 y
(disk.)22 b(While)14 b(these)j(c)o(haracteristics)g(are)e(easy)h(to)f
(preserv)o(e,)i(the)e(naiv)o(e)g(attac)o(k)o(er)-1328 50 y(ma)o(y)e(not)h
(kno)o(w)f(that)h(they)h(are)f(imp)q(ortan)o(t.)-823 83 y @F5 @sf
(Read-Only)h(Devices.)20 b @F9 @sf(Where)g(practical,)e(the)h(system)h
(sources)g(should)e(b)q(e)h(stored)-1328 50 y(on)12 b(a)f(device)i(that)f
(do)q(es)g(not)g(p)q(ermit)g(writing.)17 b(On)12 b(man)o(y)f(system)h
(disk)g(partitions)-1329 49 y(ma)o(y)h(b)q(e)i(moun)o(ted)f(as)f
(\\Read-Only)m(.")-719 83 y @F5 @sf(Dates.)20 b @F9 @sf(On)c(man)o(y)e
(systems)j(the)f(last)g(mo)q(di\014cation)e(date)i(of)f(eac)o(h)h(\014le)g
(is)f(stored)i(and)-1329 50 y(recen)o(t)i(mo)q(di\014cations)d(of)g
(system)i(\014les)f(are)g(rep)q(orted)q 18 x(to)g(the)g(system)h(adminis-)
-1330 50 y(trator.)-221 83 y @F5 @sf(Refresh)o(.)i @F9 @sf(Some)12 b
(system)h(automaticall)o(y)e(re-install)g(system)i(soft)o(w)o(are)f(on)o
(to)g(there)h(ma-)-1329 50 y(c)o(hines)j(on)f(a)g(regular)g(basis.)22 b
(Users)17 b(of)d(TRA)o(CK)h(often)g(do)g(this)g(daily)f(to)h(assure)-1327
50 y(that)f(systems)h(ha)o(v)o(e)f(not)g(b)q(e)g(corrupted.)-64 1138 y(40)
-999 b
40 @eop1
39 @bop0
@F2 @sf
[<
03F8000FFF001C1F803007C07007E0FC03F0FC03F0FE03F8FE03F87C03F83803F80003F800
03F80003F00003F01803E01807E01E0FC01FFF0019FC001800001800001800001800001BC0
001FF8001FFE001FFF001FFF801FFFC01E01E0100020>
21 32 -3 31 28] 53 @dc
@F9 @sf
[<
7FC7FCFF800E00E01C000E00E01C000E00E01C000E00E01C000E00E01C000E00E01C000E00
E01C000E00E01C000E00E01C000E00E01C000E00E01C000E00E01C000E00E01C000E00E01C
000E00E01C000E00E01C00FFFFFFFC000E00E000000E00E000000E00E000000E00E000000E
00E000000E00E018000E01E03C000701F03C000380F0180001C09C1800003F07E000>
33 29 0 28 35] 14 @dc
@F2 @sf
[<
00FF0003FFC00783E00F00F01E00F83E007C3C007C7C007E7C007E7C007EFC007EFC007EFC
007EFC007EFE007CFE007CFF00F8FD80F0FCFFE0FC7FC0FC08007C00007C00007E00F03E01
F83E01F81F01F80F01F807C0F003F07000FFE0001F80>
23 32 -2 31 28] 54 @dc
[<
0003FE0000001FFFC00000FF00F00001F800380003F0000C0007C00006000F800003001F80
0003003F000003803F000001807F000001807E000001807E00000000FE00000000FE000000
00FE00000000FE00000000FE00000000FE00000000FE00000000FE000000007E000001807E
000001807F000001803F000003803F000003801F800007800F8000078007C0000F8003E000
1F8001F8003F8000FF01E380001FFF81800003FE0080>
33 34 -3 33 40] 67 @dc
[<
FFE0FFE0FFE0FFE0FFE0FFE01F001F001F001F001F001F001F001F001F001F001F001F001F
001F001F001F001F001F001F001F001F001F001F001F001F001F001F001F001F001F001F00
1F001F001F001F001F001F001F001F001F001F001F001F801F801F001F801F801F001F403E
403E001F303E303E00FF1FFC1FFC00FF07F007F000>
43 22 -2 21 47] 109 @dc
@F9 @sf
[<
804020201010101070F0F0600000000000000000000060F0F060>
4 26 -4 17 12] 59 @dc
@F2 @sf
[<
01E00003F00003F00003F00003F00003F00003F00003F00001F00001F00001F00000F00000
F00000F000007800007800003800001800001C00000C00000600C00300C00300C00180E000
C0E000607FFFF07FFFF87FFFF87FFFFC7FFFFE7FFFFE780000600000>
23 34 -3 33 28] 55 @dc
[<
FFFF83FFFEFFFF83FFFE07F0001FC007F0001FC007F0001FC007F0001FC007F0001FC007F0
001FC007F0001FC007F0001FC007F0001FC007F0001FC007F0001FC007F0001FC007F0001F
C007F0001FC007F0001FC007FFFFFFC007FFFFFFC007F0001FC007F0001FC007F0001FC007
F0001FC007F0001FC007F0001FC007F0001FC007F0001FC007F0001FC007F0001FC007F000
1FC007F0001FC007F0001FC0FFFF83FFFEFFFF83FFFE>
39 34 -2 33 44] 72 @dc
@F9 @sf
[<
0F8030C0203070107818780C300C000E0006000607C70C271817300F700F6007E007E007E0
07E007E007E006E006600E700C300C18180C3003C0>
16 29 -2 27 21] 57 @dc
39 @eop0
0 0 39 @bop1 324 307 a @F9 @sf(I)16 b(\(p)q(ersonally\))g(suggest)i
(stressing)f(the)g(hard)f(w)o(ork)g(of)g(y)o(our)g(sta\013)h(and)f(the)h
(incon-)-1432 50 y(v)o(enience)j(to)e(the)i(legitimate)e(users)i(and)f
(sta\013)g(mem)o(b)q(ers.)34 b(T)m(o)18 b(the)i(exten)o(t)g(practical)-1432
50 y(p)q(ortra)o(y)f(the)g(crac)o(k)o(er)h(as)f(inconsiderate)h(and)f
(immature)f(and)h(try)g(to)f(a)o(v)o(oid)g(making)-1433 50 y(him)13 b
(seem)h(brillian)o(t)e(at)i(one)g(extreme)h(or)f(the)h(attac)o(k)e(seem)i
(v)o(ery)f(simple)g(at)f(the)i(other.)-1427 116 y @F2 @sf(D.5)55 b
(Prosecution)-432 76 y @F9 @sf(If)13 b(y)o(ou)f(considering)i
(prosecution,)g(y)o(ou)f(need)h(to)f(consult)h(with)f(y)o(our)g(legal)g
(counsel)h(and)-1432 50 y(la)o(w)e(enforcemen)o(t)j(o\016cial)e(for)g
(advise)h(on)g(press)h(handling.)-960 116 y @F2 @sf(D.6)55 b(No)19 b
(Commen)n(t)-472 77 y @F9 @sf(One)f(common)f(strategy)i(for)f(a)o(v)o
(oiding)o 17 x(\(or)g(at)g(least)g(b)q(ounding\))g(time)f(loss)h(with)g
(the)-1431 50 y(press)d(is)f(to)h(simply)e(decline)i(to)f(commen)o(t)g(on)g
(the)h(situation)f(at)g(all.)k(IF)c(y)o(ou)g(are)h(going)-1433 50 y(to)g
(adopt)f(this)i(approac)o(h,)f(y)o(our)g(public)g(a\013airs)g(o\016ce)g
(can)g(advise)h(y)o(ou)e(on)h(tec)o(hniques)-1430 49 y(to)d(use.)18 b(It)
13 b(is)f(imp)q(ortan)o(t)f(to)i(tell)f(ev)o(ery)o(one)h(who)f(is)g(in)o
(v)o(olv)o(ed)f(in)h(the)h(inciden)o(t)g(that)f(they)-1431 50 y(should)17 b
(not)g(discuss)h(the)g(situation;)g(otherwise)h(p)q(eople)e(will)f(leak)h
(things)g(acciden)o(tly)m(.)-1432 50 y(Also,)d(without)h(correct)i
(informati)o(on)d(from)g(y)o(our)h(cen)o(ter,)h(the)g(press)g(ma)o(y)f
(prin)o(t)f(man)o(y)-1432 50 y(inaccurate)g(things)g(that)g(represe)q(n)o
(t)h(their)f(b)q(est)h(guesses)q(.)-923 116 y @F2 @sf(D.7)55 b(Honest)n(y)
-343 77 y @F9 @sf(I)17 b(recommend)h(against)e(trying)h(to)g(mislead)g
(the)h(press.)29 b(It)18 b(is)f(hard)g(to)h(k)o(eep)f(a)g(secr)q(et)-1430
50 y(forev)o(er)c(and)f(when)h(and)f(if)g(the)h(press)h(\014nds)f(that)f
(y)o(ou)g(ha)o(v)o(e)h(lied)f(to)g(them,)h(the)g(negativ)o(e)-1432 49 y
(co)o(v)o(erage)h(that)h(y)o(ou)f(ma)o(y)g(receiv)o(e)i(will)d(probably)h
(far)g(exceed)i(the)f(scop)q(e)h(of)e(the)h(actual)-1432 50 y(inciden)o
(t.)539 1257 y(39)-999 b
39 @eop1
38 @bop0
@F1 @sf
[<
FFFFFFFC0000FFFFFFFF8000FFFFFFFFE00003FC001FF80003FC0003FC0003FC0001FE0003
FC00007F0003FC00007F8003FC00003FC003FC00001FC003FC00001FE003FC00001FE003FC
00000FF003FC00000FF003FC00000FF003FC00000FF803FC00000FF803FC00000FF803FC00
000FF803FC00000FF803FC00000FF803FC00000FF803FC00000FF803FC00000FF803FC0000
0FF803FC00000FF003FC00000FF003FC00000FF003FC00000FF003FC00001FE003FC00001F
E003FC00001FC003FC00003FC003FC00007F8003FC0000FF0003FC0001FE0003FC0007FC00
03FC001FF800FFFFFFFFE000FFFFFFFF8000FFFFFFF80000>
45 41 -3 40 53] 68 @dc
/@F6 @newfont
@F6 @sf
[<
7FFE000003C0000001C0000001C0000001C0000001C0000000E0000000E0000000E0000000
E000000070000000700000007000000070000000380000003800000038000000380000001C
0000801C0080801C0080401C0080400E0080600E0080200E0080300E00C01C0701C01FFFFF
C0>
26 28 -7 27 30] 84 @dc
[<
1E00318060C0E060E030E038E018E01CE01CE01C700E700E300E380C180C0C0C071801E0>
15 18 -5 17 21] 111 @dc
[<
603800E0640070E40070E20070E20070E20038E00038E00039C0003F80001E00001D00001C
80001C83000E43800E23800E11000E0F000700000700000700000700000380000380000380
0003800001C00001C0000FC000>
17 29 -3 28 19] 107 @dc
[<
1F0030C060206010E008E000E000E000E000E0007F8070607010381018080C10071001E0>
13 18 -5 17 19] 101 @dc
[<
FF80003C00001C00001C00001C00001C00000E00000E00000E70000E8C0007060007070007
03000703800381800381C00381C00381C001C0E001C0E011C0E011C0E008E0C008E0C004D9
80078700>
19 26 -1 17 21] 112 @dc
[<
078E001C59001839001838803838803838801C1C001C1C001C1C001C1C000E0E000E0E0087
0E00870E004707004707002707001E0300>
17 18 -4 17 22] 117 @dc
[<
3000700038003800380038001C001C001C001C000E000E008E008E064707468726C23C3C>
16 18 -4 17 18] 114 @dc
[<
300C01C0701C0320380E0710380E0708380E0388380E03881C0703801C0701C01C0701C01C
0701C00E0380E00E0380E08E0380E08E0380E04703C0E04683A0E0266318C03C1E0780>
29 18 -4 17 34] 109 @dc
[<
3C38626461E4C0E2C0E2E0E2E070E070E070E0707038703830383838181C0C3C063C03CC>
15 18 -5 17 21] 97 @dc
[<
1F0030C06020E010E008E000E000E000E000E0007000700030003838181C0C08070801F0>
14 18 -5 17 19] 99 @dc
[<
601C00E03200707100707080703880703880383800381C00381C00381C001C0E001C0E001C
0E001C0E000E0E000F0E000E8C000E78000700000700000700000700000380000380000380
0003800001C00001C0000FC000>
17 29 -3 28 21] 104 @dc
[<
3C0072007200710071007100380038001C001C001C000E008E008E004700470026001C0000
00000000000000000000000000010003800180>
9 28 -4 27 13] 105 @dc
[<
300E00701900383880383840381C40381C401C1C001C0E001C0E001C0E000E07000E07008E
07008E07004707004687002646003C3C00>
18 18 -4 17 23] 110 @dc
[<
1F0060C08060C030E03060300038007807F00FF01FC01F001C0018180C1C0C08060801F0>
14 18 -3 17 17] 115 @dc
[<
780000CC0000E60000C6000007000003000003000003800003800003800001C00001C00001
C00001C00001C00000E00000E00000E00000E00000E0000070000070000070000070000070
0003FF80003800003800003800003800003800001C00001C00001C60000C700006700003C0
>
20 37 1 28 13] 102 @dc
[<
804040201010080838783818>
5 12 -3 3 13] 44 @dc
[<
07C3C00C26301C1C10181C08181C04180C041C0E041C0E021C0E021C0E020E07010E070187
07018707014703834703872703871E0183>
24 18 -4 17 28] 119 @dc
[<
3C380062640061E400C0E200C0E200E0E200E07000E07000E07000E0700070380070380030
3800383800181C000C3C00063C0003DC00000E00000E00000E00000E000007000007000007
00000700000380000380001F80>
17 29 -5 28 21] 100 @dc
[<
0E00190038803840384038401C001C001C001C000E000E000E000E00070007000700FFE003
8003800380038001C001C001C000C0>
11 26 -3 25 14] 116 @dc
[<
FFC0FFC0FFC0>
10 3 -3 9 15] 45 @dc
[<
60F07830>
5 4 -4 3 13] 46 @dc
@F6 @sf
[<
1000600000180060000018007000001C007000001C007800001E007800001E007400001D00
7400001D807200001C807200001C407100001C407180001C207080001C207040001C107040
001C107020001C087020001C087010001C047010001C047008003802700800380270040038
0170040038017002003800F002003800F0010038007001803C007001C0FF83FF0FF0>
36 29 -9 27 41] 87 @dc
[<
07800C4018201810380818081C081C041C041C040E020E02870287024706470E270E1E06>
15 18 -4 17 19] 118 @dc
[<
7E00C300E1C0C0C000E000E0007000700F7018F01878303830383838381C381C381C381C1C
0E1C0E0C0E0E0E0607030F018F00F3>
16 26 -3 17 19] 103 @dc
@F2 @sf
[<
FFF00600FFFFFFF00F00FFFF06000F0007E006001F8007E006001F8007E006001F8007E006
003FC007E006003FC007E006007E6007E006007E6007E00600FC3007E00600FC3007E00601
F81807E00601F81807E00601F81807E00603F00C07E00603F00C07E00607E00607E00607E0
0607E0060FC00307E0060FC00307E0060FC00307E0061F800187E0061F800187E0063F0000
C7E0063F0000C7E0067E000067E0067E000067E006FC000037E006FC000037E006FC000037
E007F800001FE0FFF800001FFFFFF000000FFF>
48 34 -2 33 53] 77 @dc
[<
01FF000FFFE03F01F87C007C78003CF0001EF0001EF0001EF0001E70003E3800FC1FFFFC0F
FFF81FFFF03FFF8038000030000030000013FC001FFF001F0F803E07C03C03C07C03E07C03
E07C03E07C03E07C03E03C03C03E07CF1F0F8F0FFF7F03FC1E>
24 33 -2 21 28] 103 @dc
@F2 @sf
[<
00FFFE00FFFE0007E00007E00007E00007E00007E00007E00007E0FFFFFEFFFFFEE007E070
07E03807E01807E00C07E00E07E00707E00307E00187E001C7E000E7E00077E00037E0001F
E0001FE0000FE00007E00003E00003E00001E00000E0>
23 32 -2 31 28] 52 @dc
[<
FFFFFFFCFFFFFFFC07F001FC07F0003E07F0001E07F0000E07F0000E07F0000607F0000607
F0000607F0000307F0180307F0180307F0180007F0180007F0380007F0780007FFF80007FF
F80007F0780007F0380007F0180007F0180607F0180607F0180607F0000607F0000E07F000
0E07F0000C07F0001C07F0003C07F000FCFFFFFFFCFFFFFFFC>
32 34 -2 33 37] 69 @dc
[<
FF80FFE0FF80FFE00E003E0007007E000380FC0001C0F80000C1F0000063E0000037C00000
3FC000001F8000001F0000003F0000007F800000F9800001F8C00003F0600003E0700007C0
38000F801C00FFE07FC0FFE07FC0>
27 22 -1 21 30] 120 @dc
@F9 @sf
[<
7FCFF80E01C00E01C00E01C00E01C00E01C00E01C00E01C00E01C00E01C00E01C00E01C00E
01C00E01C00E01C00E01C00E01C0FFFFC00E01C00E01C00E01C00E01C00E01C00E01C00E01
C00703C00303C001C1C0007FC0>
21 29 0 28 23] 13 @dc
[<
001F800000E060800180118007000B800E0007801C0007801C000780380007807800078078
00078070000780F0000F80F000FFF0F0000000F0000000F0000000F0000000F0000000F000
0000700000807800008078000080380001801C0001801C0003800E00038007000780018019
8000E06180001F8080>
28 30 -2 28 33] 71 @dc
38 @eop0
0 0 38 @bop1 262 307 a @F1 @sf(D)68 b(Handling)24 b(the)f(Press)-699 91 y
@F9 @sf(Often)c(media)g(inquiries)g(can)g(absorb)g(more)g(time)g(than)g
(all)f(of)h(the)h(others)g(issues)g(in)-1432 50 y(inciden)o(t)12 b
(handling)g(com)o(bined.)17 b(It)c(is)f(imp)q(ortan)o(t)g(to)h(understand)h
(this)e(and)h(to)f(use)i(y)o(our)-1432 50 y(public)g(a\013airs)g(o\016ce)h
(if)f(it)g(exists.)21 b(In)15 b(the)g(excitemen)o(t,)h(p)q(eople,)f(esp)q
(ecially)f(those)i(who)-1432 50 y(are)h(not)g(exp)q(erience)q 18 x(sp)q
(eak)o(ers)q 18 x(will)f(often)h(forget)g(that)g(they)h(are)g(not)f(emp)q
(o)o(w)o(ered)h(to)-1432 49 y(sp)q(eak)c(for)g(the)g(cen)o(ter)i(and)d
(that)h(nothing)f(is)h(ev)o(er)h(really)e(said,)g(\\O\013)h(the)h
(record.")-1345 117 y @F2 @sf(D.1)55 b(Spin)19 b(Con)n(trol)-456 76 y
@F9 @sf(The)12 b(phrase)g(\\Spin)f(Con)o(trol")g(w)o(as)g(\014rst)h(used)h
(in)e(p)q(olitical)f(circles.)18 b(It)12 b(refers)h(to)e(altering)-1432
50 y(the)h(p)q(erce)q(ptions)h(ab)q(out)g(an)f(inciden)o(t)g(rather)h
(than)g(the)g(dela)o(ying)e(with)h(the)h(facts)f(of)g(the)-1431 50 y
(inciden)o(t)h(themselv)o(es.)20 b(Consider)14 b(the)g(t)o(w)o(o)g
(statemen)o(ts.)-861 91 y(1.)20 b @F6 @sf(T)m(o)d(ke)n(ep)g(our)f
(machines)h(safe,)g(we)f(de)n(cide)n(d)h(to)g(disc)n(onne)n(ct)g(them)g
(fr)n(om)f(the)h(net-)-1329 50 y(work.)-152 83 y @F9 @sf(2.)j @F6 @sf(We)c
(wer)n(e)e(for)n(c)n(e)n(d)h(to)g(shut)g(down)h(our)f(network)g(c)n(onne)n
(ctions)h(to)f(pr)n(event)g(damage)-1328 50 y(to)g(our)g(machines.)-347
91 y @F9 @sf(I)10 b(ha)o(v)o(e)g(found)g(that)g(the)h(giving)e(the)i
(press)g(a)f(state)h(lik)o(e)f(the)h(former)f(tends)h(to)f(pro)q(duce)-1430
50 y(a)15 b(laudatory)g(piece)i(ab)q(out)e(one's)h(sta\013)g(while)g(a)f
(statemen)o(t)i(lik)o(e)e(the)h(latter,)g(pro)q(duces)-1430 50 y(an)d(em)o
(barrassing)h(piece.)19 b(The)14 b(t)o(w)o(o)g(statemen)o(ts)h(are)f(of)f
(course)j(essen)o(tially)d(iden)o(tical.)-1347 50 y(Y)m(our)f(public)g
(a\013airs)g(group)h(is)f(probably)g(famil)o(iar)f(with)h(these)i(issues)g
(and)e(can)h(help)-1432 49 y(y)o(ou)g(form)g(press)i(statemen)o(ts)-474
117 y @F2 @sf(D.2)55 b(Time)18 b(Con)n(trol)-474 76 y @F9 @sf(With)e(a)h
(su\016cien)o(tly)f(large)h(inciden)o(t,)g(the)h(media)e(atten)o(tion)h
(can)g(absorb)h(almost)e(un-)-1432 50 y(b)q(ounded)h(amoun)o(ts)e(of)h
(time.)25 b(The)17 b(press)h(will)d(often)h(call)g(emplo)o(y)o(ees)h(at)f
(home.)25 b(It)17 b(is)-1432 50 y(imp)q(ortan)o(t)c(the)h(sta\013)h(that)f
(are)h(solving)d(a)i(problem)g(understand)h(that)f(the)h(solving)e(the)-1431
50 y(inciden)o(t)g(is)h(more)g(imp)q(ortan)o(t)f(that)g(dealing)g(with)h
(the)g(press.)19 b(A)o(t)14 b(the)h(v)o(ery)f(least)g(insist)-1432 49 y
(that)19 b(all)e(press)k(represe)q(n)o(tativ)o(es)f(go)f(through)g(the)g
(public)g(a\013airs)g(often)g(so)g(that)g(the)-1431 50 y(standard)14 b
(questions)g(can)g(b)q(e)h(easily)e(and)h(time-e\016cien)o(tly)f(b)q(e)i
(answ)o(ered.)-1196 116 y @F2 @sf(D.3)55 b(Hero)18 b(Making)-466 77 y
@F9 @sf(The)d(press)h(lik)o(es)f(to)g(\014nd)g(outstanding)g(hero)q(es)h
(and)f(villai)o(ns.)21 b(As)15 b(a)g(result,)h(the)f(media)-1432 50 y
(will)e(tend)j(to)e(mak)o(e)h(one)g(of)f(y)o(our)h(sta\013)g(mem)o(b)q
(ers)h(in)o(to)e(a)h(hero)g(if)g(at)f(all)g(p)q(ossible)h(from)-1432 50 y
(them)g(to)f(do)h(so.)21 b(It)15 b(is)g(more)f(lik)o(ely)g(than)h(not)g
(that)g(the)g(Hero)g(will)f(not)h(b)q(e)g(the)g(p)q(erson)-1430 49 y(who)e
(has)h(w)o(ork)o(ed)g(the)h(hardest)g(or)e(the)i(longest.)-784 117 y @F2 @sf
(D.4)55 b(Discouraging)18 b(or)h(Encouraging)f(a)h(Next)f(Inciden)n(t)-1258
76 y @F9 @sf(The)g(atten)o(tion)f(that)h(an)f(inciden)o(t)h(receiv)o(es)h
(greatly)e(a\013ect)i(the)f(lik)o(eliho)q(o)q(d)e(of)h(future)-1431 50 y
(inciden)o(ts)12 b(at)g(that)g(particular)g(site.)18 b(It)12 b(probably)g
(also)f(in\015uences)j(the)e(decision)h(pro)q(cess)-1430 50 y(or)g(p)q
(oten)o(tial)g(future)h(crac)o(k)o(ers)h(in)e(the)h(comm)o(unit)o(y)e(at)i
(large.)j(Claiming)o 12 x(that)d(y)o(our)f(site)-1431 50 y(is)i(in)o
(vulnerable)g(is)g(an)g(in)o(vitation)f(to)h(a)g(future)h(inciden)o(t.)23 b
(Giving)14 b(the)i(media)e(step)j(b)o(y)-1432 50 y(step)c(instructions)g
(on)g(ho)o(w)f(to)g(break)h(in)f(to)h(a)f(computer)h(is)f(also)g(not)h(a)f
(w)o(onderful)g(idea.)-737 159 y(38)-999 b
38 @eop1
37 @bop0
@F1 @sf
[<
C01FF000E0FFFE00F3FFFF00FFE01F80FF0007C0FC0003E0F80003F0F00001F0F00001F0E0
0001F8E00001F8E00001F8600001F8000003F8000007F800000FF800007FF00007FFF000FF
FFE003FFFFE007FFFFC00FFFFF801FFFFE003FFFFC007FFFE0007FFE0000FFC00000FF0000
00FE0000E0FE0000E0FC0000E0FC0001E0FC0001E07C0001E07C0003E03E0007E01F001FE0
0F807FE007FFF9E003FFF0E0007F8060>
29 41 -4 40 38] 83 @dc
[<
0001C000000003E000000003E000000007F000000007F00000000FF80000000FF80000000F
F80000001FDC0000001FDC0000003FDE0000003F8E0000007F8F0000007F070000007F0700
0000FE03800000FE03800001FC01C00001FC01C00003FC01E00003F800E00007F800F00007
F000700007F0007000FFFE03FF80FFFE03FF80FFFE03FF80>
33 27 -1 26 36] 118 @dc
@F9 @sf
[<
60F0F0600000000000000000000060F0F060>
4 18 -4 17 12] 58 @dc
[<
0080008007E018902088408440828082E083F083F08360870087008E00BE03FC0FF81FF03F
C07E80F080E080C086C08FC08FC087408160823084189807E000800080>
16 33 -2 30 21] 36 @dc
[<
07C018702038401C401E800EF00FF00FF00F600F000F000F000F000E200E301C2818243023
E02000200020002000200020003FC03FF03FF8300C>
16 29 -2 27 21] 53 @dc
[<
03E00C301818300C300E700660076007E007E007E007E007E007E006F00EF00CE818E430E3
E0600070007000300C301E181E0C0E0604030C00F0>
16 29 -2 27 21] 54 @dc
@F6 @sf
[<
38006800E400E400E400E400700070007000700038003800380038001C001C001C001C000E
000E000E000E000700070007000700038003801F80>
9 29 -4 28 11] 108 @dc
[<
3C0047008180E1C0E0C000E00070007007F01C7018381838383838381C1C1C1C1C1C1C1C0E
0E0E0E870E870E4707470727071E03>
16 26 -4 17 20] 121 @dc
@F6 @sf
[<
FF8010001C0010000C00180004003800040038000400380002007400020074000200740002
00E4000100E2000100E2000101C2000101C2000081C1000081810000838100008381000043
8080004700800047008000470080002E0040002E0040002E0040003C0060001C007001FC03
FE>
31 28 -3 27 31] 78 @dc
@F9 @sf
[<
03000007800007800007800007800007800007800003800003800003800003800001800001
800001C00000C00000C0000040000060000020000010000010008008008004008004004002
007FFF007FFF007FFF80400000>
17 29 -2 27 21] 55 @dc
37 @eop0
0 0 37 @bop1 262 307 a @F1 @sf(C)68 b(Highly)24 b(Sensitiv)n(e)e(En)n
(viron)q(men)n(ts)-1046 91 y @F9 @sf(An)d(computing)h(en)o(vironmen)o(t)f
(should)h(b)q(e)g(considered)h(highly)e(sensitiv)o(e)h(when)g(it)g(is)-1432
50 y(p)q(oten)o(tially)11 b(pro\014table)i(to)g(co)o(v)o(ert)g(the)h(data)e
(or)h(when)g(great)g(incon)o(v)o(enience)h(and)f(losses)-1431 50 y(could)g
(result)h(from)e(errors)j(pro)q(duced)g(there.)k(In)13 b(particular,)g(y)o
(ou)g(should)g(consider)h(y)o(ou)-1432 50 y(site)g(sensitiv)o(e)g(if)f(an)o
(y)h(of)f(the)i(follo)o -1 x(wing)o 13 x(conditions)e(apply:)-914 91 y(1.)
20 b(Y)m(ou)14 b(pro)q(cess)h(data)f(that)g(the)g(go)o(v)o(ernmen)o(t)g
(considers)h(sensitiv)o(e.)-1105 83 y(2.)20 b(Y)m(ou)15 b(pro)q(cess)q 17 x
(\014nancial)g(transactions)h(suc)o(h)g(that)g(a)f(single)h(transaction)g
(can)f(ex-)-1328 50 y(ceed)h($25,00)o(0.0)o(0)c(or)i(the)h(total)e
(transactions)h(excee)q(d)h(2.5)e(Millio)o(n)g(dollars.)-1278 83 y(3.)20 b
(Y)m(ou)e(pro)q(cess)i(data)e(whose)h(time)f(of)f(release)j(is)e(tigh)o
(tly)f(con)o(trolled)h(and)g(whose)-1328 50 y(early)c(release)h(could)f
(giv)o(e)f(signi\014can)o(t)h(\014nancial)f(adv)n(an)o(tage.)-1045 83 y
(4.)20 b(Y)m(our)14 b(function)f(is)h(life)f(critical.)-564 83 y(5.)20 b
(Y)m(our)10 b(organization)f(has)h(enemies)h(that)f(ha)o(v)o(e)g(a)g
(history)g(of)f(\\terrorism")h(or)g(violen)o(t)-1329 49 y(protests.)-207
83 y(6.)20 b(Y)m(our)11 b(data)h(con)o(tains)f(trade)h(secre)q(te)h
(information)d(that)h(w)o(ould)g(b)q(e)h(of)f(direct)h(v)n(alue)-1329 50 y
(to)i(a)g(comp)q(etitor.)-336 92 y(Essen)o(tially)g(money)g(is)g(more)g
(directly)h(v)n(aluable)e(than)h(secre)q(ts)i(and)e(a)g(\\vilian")e(can)
-1431 49 y(p)q(oten)o(tially)17 b(steal)h(more)g(from)g(one)g(succes)q
(sful)h(attac)o(k)f(on)g(one)h(\014nancial)e(institution)-1432 50 y(than)j
(he)h(will)e(ev)o(er)j(b)q(e)f(able)f(to)g(get)h(selling)f(state)h(secre)q
(ts)h(for)e(decades)q(.)39 b(There)22 b(is)-1432 50 y(signi\014can)o(t)9 b
(concern)i(that)f(the)g(electrical)g(utilit)o(y)e(companies)i(and)f(and)h
(bank)f(conducting)-1431 50 y(electronic)14 b(funds)h(transfer)f(will)f(b)q
(e)h(targets)h(of)e(terrorists)j(in)d(thee)i(next)f(decade.)-1254 50 y(F)m
(or)i(cen)o(ters)q 18 x(the)i(m)o(ust)f(supp)q(ort)g(sensitiv)o(e)h(pro)q
(cessing)g(it)f(is)g @F6 @sf(str)n(ongly)j @F9 @sf(advised)d(to)-1432 49 y
@F6 @sf(c)n(ompletely)j @F9 @sf(separate)f(the)f(faciliti)o(es)f(for)g
(pro)q(cessing)i(this)e(data)g(from)g(those)h(faciliti)o(es)-1432 50 y
(used)e(to)g(pro)q(cess)h(ordinary)f(data)f(and)h(to)f(allo)o(w)g
(absolutely)g(no)g(connection)i(from)e(the)-1431 50 y(sensitiv)o(e)i(pro)q
(cess)q(ing)g(systems)i(to)e(the)g(outside)h(w)o(orld.)27 b(There)18 b(is)f
@F6 @sf(No)j @F9 @sf(substitute)e(for)-1432 50 y(ph)o(ysical)13 b(securit)o
(y)i(and)f(prop)q(er)h(separation)f(will)f(require)i(an)e(attac)o(k)o(er)i
(to)f(compromise)-1432 50 y(ph)o(ysical)g(securit)o(y)h(in)f(order)i(to)e
(p)q(enetrate)q 16 x(the)h(system.)21 b(T)m(ec)o(hniques)15 b(for)g
(coping)f(with)-1432 49 y(the)g(remaining)f(\\insider)h(threat")g(are)g(b)q
(ey)o(ond)h(the)f(scop)q(e)h(of)e(this)h(tutorial.)-1177 50 y(In)i
(analysis)f(of)h(computing)g(in)f(sensitiv)o(e)i(en)o(vironmen)o(ts,)g
(there)g(are)g(t)o(w)o(o)f(di\013eren)o(t)-1431 50 y(securit)o(y)g(goals.)
23 b(The)16 b(\014rst)h(is)e(that)h(of)f(protecting)i(the)f(system.)25 b
(All)15 b(of)g(the)h(advice)g(in)-1432 50 y(this)d(b)q(o)q(oklet)h(should)f
(b)q(e)i(considered)g(as)f(a)f(\014rst)h(step)h(to)o(w)o(ards)f(that)g
(goal.)o 17 x(The)g(second)-1430 50 y(goal)g(is)h(the)h(protection)g(of)f
(job)g(or)g(\\T)m(ec)o(hnical)g(Compliance.")22 b(This)15 b(is)h(is)f(the)h
(goal)e(of)-1432 50 y(sho)o(wing)g(that)h(all)f(of)g(the)i(regulations)f
(ha)o(v)o(e)g(b)q(een)h(follo)n(w)o(ed)e(and)h(that)g(protecting)h(the)-1431
49 y(system)e(has)g(b)q(een)h(done)f(with)g(\\due)g(diligence.")-730 50 y
(It)20 b(is)g(imp)q(ortan)o(t)f(to)h(realize)g(that)g(these)i(t)o(w)o(o)d
(securit)o(y)i(goals)e(are)i(separate)g(and)-1432 50 y(p)q(oten)o(tially)
12 b(con\015icting.)17 b(It)d(ma)o(y)e(b)q(e)i(necess)q(ary)h(to)e(w)o
(ork)g(to)o(w)o(ards)g(the)h(latter)g(the)g(goal)-1433 50 y(and)g(that)i
(is)e(often)i(more)f(a)f(legal)h(and)f(b)q(o)q(okk)o(eeping)h(question)h
(than)f(a)g(tec)o(hnical)g(one.)-1432 50 y(It)e(is)h(also)f(b)q(ey)o(ond)i
(the)f(scop)q(e)h(of)e(this)h(w)o(ork.)-30 399 y(37)-999 b
37 @eop1
36 @bop0
/@F10 @newfont
@F10 @sf
[<
FFF8FFF8070007000700070007000700070007000700070007000700070007000700070007
0007000700FFF8FFF8>
13 23 -3 22 20] 73 @dc
[<
00F003FC070C070E070E070E07000700070007000700070007000700FFFC7FFC0700070007
0007000300>
15 21 -1 20 20] 116 @dc
[<
FFFCFFFC0380038003800380038003800380038003800380038003807F807F800000000000
0000000300078007800300>
14 24 -3 23 20] 105 @dc
[<
CFE0FFF8F81CF006E0066006001C07F83FF07F80F000C038C03860383FF80FD8>
15 16 -2 15 20] 115 @dc
[<
0F8F803FFF80707C00E01C00E01C00E01C00701C003C1C001FFC0007FC00001C00001C0020
18007078007FF0001FC000>
17 16 -2 15 20] 97 @dc
[<
FFFEFFFE038003800380038003800380038003800380038003800380038003800380038003
8003800380FF80FF80>
15 23 -2 22 20] 108 @dc
[<
07C01FF03C78783C701CE00EE00EE00EE00EE00EE00E701C701C3C781FF007C0>
15 16 -2 15 20] 111 @dc
[<
07CFC01FEFC0383E00301E00700E00E00E00E00E00E00E00E00E00E00E00E00E00700E0030
1E001C3E000FFE0007CE00000E00000E00000E00000E00000E00007E00007E00>
18 23 -1 22 20] 100 @dc
[<
03E00003E00003E0000770000770000770000630000E38000E38000E38001C1C001C1C001C
1C001C1C00FE3F80FE3F80>
17 16 -1 15 20] 118 @dc
[<
0CF8001DFC001F0E001E03001C03801C01C01C01C01C01C01C01C01C01C01C01C01C03801E
03001F07001DFE001CF8001C00001C00001C00001C00001C0000FC0000FC0000>
18 23 0 22 20] 98 @dc
[<
03F00FFC1C1E380E70006000E000FFFEFFFEE00EE00E700C301C1C380FF007E0>
15 16 -2 15 20] 101 @dc
[<
03F00FFC1C1E380E70006000E000E000E000E0006000700038081C1C0FFC03F8>
15 16 -2 15 20] 99 @dc
[<
FFF000FFF0000E00000E00000E00000E00000E00000E00000E00000E00000F00000F00000F
81000EE380FE7F80FE1F00>
17 16 -1 15 20] 114 @dc
[<
7FFC7FFC038003800380038003800380038003800380038003800380FFFE7FFE0380038003
80038401CE00FE007C>
15 23 -1 22 20] 102 @dc
[<
FE79E0FEFBE038E38038E38038E38038E38038E38038E38038E38038E38038E38038E3803C
F3803CF380FFDF00FB8E00>
19 16 0 15 20] 109 @dc
[<
FF8FE0FF8FE01C07001C07001C07001C07001C07001C07001C07001C07001C07001C07001E
07001F86001DFE001C78001C00001C00001C00001C00001C0000FC0000FC0000>
19 23 0 22 20] 104 @dc
[<
3C00007E000077000073800003800001C00001C00001C00001E00001E00001E00003700003
70000730000730000738000E38000E38000E1C001C1C001C1C001C1C00FE3F80FE3F80>
17 24 -1 15 20] 121 @dc
[<
FF8FE0FF8FE01C07001C07001C07001C07001C07001C07001C07001C07001C07001C07001E
07001F8600FDFE00FC7800>
19 16 0 15 20] 110 @dc
[<
70F8F8F870>
5 5 -7 4 20] 46 @dc
[<
0080018001800FC01FF039B8718CE186E186E1864186018E019C01F80FF03FE07F807180C1
84C18EC18EC18E619C39BC1FF007E0018001800080>
15 29 -2 25 20] 36 @dc
[<
FE3E00FE3E00383E00386E00386E00386E00386E0038EE0038CE0038CE0039CE0039CE0039
CE00398E00398E003B8E003B0E003B0E003B0E003B0E003E0E00FE3F80FE3F80>
17 23 -1 22 20] 78 @dc
[<
1FF07FFC783C701CE00EE00EE00EE00EE00EE00EE00EE00EE00EE00EE00EE00EE00EE00EE0
0E701C783C7FFC1FF0>
15 23 -2 22 20] 79 @dc
[<
0FF8000FF80001C00001C00001C00001C00001C00001C00001C00001C00001C00001C00001
C00001C00001C00001C00001C000E1C380E1C380E1C380E1C380FFFF807FFF80>
17 23 -1 22 20] 84 @dc
[<
FF00FF003800380038003800380038003800387038703FF03FF03870387038003800380738
0738073807FFFFFFFF>
16 23 -2 22 20] 70 @dc
[<
03CE0FFE1C3E181E381E700E700E600EE00EE07FE07FE000E000E000E000600E700E700E38
1E181E1C3E0FFE03C6>
16 23 -1 22 20] 71 @dc
[<
C7E0FFF0F838F01CE00EE00E600E000E001E001C01F80FF03FE07E007000E000E01CE01CE0
1C603C307C1FFC0FCC>
15 23 -2 22 20] 83 @dc
[<
07F00007F00001C00001C00001C00001C00001C00001C00001C00001C00003E00003E00003
60000770000770000E38000E38001E3C001C1C003C1E00380E00FE3F80FE3F80>
17 23 -1 22 20] 89 @dc
[<
00C001C0030006000C001C0038003000700070006000E000E000E000E000E000E000E00060
0070007000300038001C000C000600030001C000C0>
10 29 -6 25 20] 40 @dc
[<
4040C060C060C060C060C060E0E0E0E0E0E0E0E0C060>
11 11 -4 22 20] 34 @dc
[<
03C00FF01C38181C380C700E700E600EE000E000E000E000E000E000E000600E700E700E38
1E181E1C3E0FFE03C6>
15 23 -2 22 20] 67 @dc
[<
FFFFFFFF380738073807380738003800380038003800380038003800380038003800380038
0038003800FF00FF00>
16 23 -2 22 20] 76 @dc
[<
01F00007FC000E0E001C07001C070038038038038038038038038038038038038038038038
0380380380380380380380380380380380380380380380380380FE0FE0FE0FE0>
19 23 0 22 20] 85 @dc
[<
FFFF80FFFF803803803803803803803803803800003800003800003870003870003FF0003F
F000387000387000380000380000380700380700380700380700FFFF00FFFF00>
17 23 -1 22 20] 69 @dc
[<
FE0700FE0F80381DC0381DC0381C80381C00381C00381C00381C00381C003838003FF0003F
F800383C00381C00380E00380E00380E00380E00381C00383C00FFF800FFE000>
18 23 -1 22 20] 82 @dc
[<
FFFEFFFEFFFE>
15 3 -2 -2 20] 95 @dc
[<
FE0FE0FE0FE038038038038038038038038038038038038038E38038E38039F38039B38039
B38039B3803BBB803BBB803B1B803B1B803B1B803B1B803E0F80FE0FE0FE0FE0>
19 23 0 22 20] 77 @dc
[<
FFF8FFFC381E380E38073807380738073807380E381E3FFC3FFC381E380E38073807380738
07380E381EFFFCFFF0>
16 23 -1 22 20] 66 @dc
[<
8000C0006000300018001C000E000600070007000300038003800380038003800380038003
000700070006000E001C00180030006000C0008000>
9 29 -4 25 20] 41 @dc
[<
03E7E00FFFE01C1F001C07001C07001C07001C07001C07001C07001C07001C07001C07001C
07001C0700FC3F00FC3F00>
19 16 0 15 20] 117 @dc
[<
C000E000E00070007000380038001C001C000E000E000700070003800380038001C001C000
E000E00070007000380038001C001C000E000E0006>
15 29 -2 25 20] 47 @dc
[<
FE00FE00380038003800380038003800380038003FF03FFC381E380E380738073807380738
07380E381EFFFCFFF0>
16 23 -1 22 20] 80 @dc
[<
FFFF80FFFF807FFF800000000000000000007FFF80FFFF80FFFF80>
17 9 -1 15 20] 61 @dc
[<
FE3F80FE3F80380E00380E00380E00380E00380E00380E00380E00380E00380E003FFE003F
FE00380E00380E00380E00380E00380E00380E00380E00380E00FE3F80FE3F80>
17 23 -1 22 20] 72 @dc
[<
FF8000FF80001C00001C00001C00001C00001C00001C00001CF8001DFC001F0E001E03001C
03801C01C01C01C01C01C01C01C01C01C01C01C01C03801E03001F0700FDFE00FCF800>
18 24 0 15 20] 112 @dc
[<
70F8F8F87000000000000070F8F8F870>
5 16 -7 15 20] 58 @dc
[<
FFFEFFFEFFFE>
15 3 -2 12 20] 45 @dc
[<
FFE000FFF800383C00381E00380E0038070038070038038038038038038038038038038038
0380380380380380380700380700380700380E00381E00383C00FFF800FFE000>
17 23 -1 22 20] 68 @dc
[<
FE3F80FE3F801C1C001C38001C38001C70001EF0001FE0001FC0001FC0001DE0001CF0001C
78001C3C001DFF801DFF801C00001C00001C00001C00001C0000FC0000FC0000>
17 23 -1 22 20] 107 @dc
[<
007FC0007FC0000E00000E00000E00000E00000E00000E0007CE000FEE001C3E00301E0070
0E00E00E00E00E00E00E00E00E00E00E00E00E00700E00301E001C3E000FFE0003CE00>
18 24 -1 15 20] 113 @dc
[<
FE3F80FE3F80380E003C1E001C1C001C1C001FFC001FFC000E38000E38000E38000E38000E
380006300007700007700007700007700003600003600003E00003E00001C000>
17 23 -1 22 20] 65 @dc
[<
07C00FE01C7038383838701C701CE00EE00EE00EE00EE00EE00EE00EE00EE00E701C701C30
1838381C700FE007C0>
15 23 -2 22 20] 48 @dc
[<
001E001C003C003800781FF07FFC78FC71DCE1CEE38EE00EE00EE00EE00EE00EE00EE00EE0
0EE00EE00EE00EE00EE00E701C783C7FFC1FF0>
15 28 -2 22 20] 81 @dc
[<
07F0001FFC003C1E00700700E00380E00380E00380E00380700F003FFE001FFC003FF80070
000070000037C0003FF000383800301800701C00701C00701C00301800383B801FFF8007CF
00>
17 25 -1 15 20] 103 @dc
[<
0E78000E78001E7C001A6C001A6C001B6C001B6C0019CC0039CE0039CE00380E00380E0038
0E00380E00FF7F80FF7F80>
17 16 -1 15 20] 119 @dc
[<
FE3FFE3F381C381C38383838387038703CE03CE03FE03FC03FC03B8039C039E038E0387038
783838381CFE7FFE7F>
16 23 -1 22 20] 75 @dc
[<
FFFFFFFF700738071C070E000700038001C000E000707038701C700E7FFF3FFF>
16 16 -1 15 20] 122 @dc
[<
80C060303018181878F8F060>
5 12 -8 22 20] 39 @dc
[<
FFE0FFE0E000E000E000E000E000E000E000E000E000E000E000E000E000E000E000E000E0
00E000E000E000E000E000E000E000E000FFE0FFE0>
11 29 -7 25 20] 91 @dc
[<
0FC03FF07838701CE00EE00E400E000E000E001C003807F007E000700038001C001C201C70
1C701C38381FF00FC0>
15 23 -2 22 20] 51 @dc
[<
04000E000E000E000E000E000E00070007000700070003800380018001C000C000E0007000
30E038E01CFFFEFFFEE000>
15 24 -2 23 20] 55 @dc
[<
0FC03FF07878601CE01CE00E400E000E000E000C201C78387FF077C0700070007000700070
00700070007FFC3FFC>
15 23 -2 22 20] 53 @dc
[<
C0E030180C7CFCFCF870>
6 10 -7 4 20] 44 @dc
[<
FFE0FFE000E000E000E000E000E000E000E000E000E000E000E000E000E000E000E000E000
E000E000E000E000E000E000E000E000E0FFE0FFE0>
11 29 -1 25 20] 93 @dc
[<
3F007F80E0C040E00070007000700070007000700070007000700070007000700070007000
700070007000701FF01FF00000000000000000006000F000F00060>
12 32 -2 23 20] 106 @dc
[<
1F007FC0F0E0E070E070007000700070007000700070007000700070007000700070007000
700070007007FC07FC>
14 23 -3 22 20] 74 @dc
[<
1E3C001E3C001E3C001A2C001B6C001B6C003B6E003B6E003B6E003B6E003B6E003BEE003B
EE0031C600300600700700700700700700700700700700700700FC1F80FC1F80>
17 23 -1 22 20] 87 @dc
[<
01F007F80E1E180638F071F8739C739CE70EE70EE70EE70EE70EE70EE70E739E739E71FC38
FC181C0E3807F001E0>
15 23 -2 22 20] 64 @dc
[<
80E070301878F8F8F06000000000000070F8F8F870>
5 21 -7 15 20] 59 @dc
[<
FE3F80FE3F801C1C000E38000E780007700003E00003C00001C00003E00007E0000770000E
78001E38007E3F007E3F00>
17 16 -1 15 20] 120 @dc
36 @eop0
0 0 36 @bop1 262 353 a @F10 @sf(It)18 b(is)h(also)f(advisa)o(ble)o 18 x
(to)h(clear)f(old)g(files)g(from)g(the)h(direc)o(to)o(ry)f(on)h(a)g(daily)o
-1354 45 a(basi)o(s.)-119 92 y($)g(If)g(.NOT.)o 18 x(F$GetS)o(YI\()o("CL)o
(US)o(TER)o(_M)o(EM)p(B)o(ER)o("\))f(Then)g(GoTo)g(Not_Cl)o(us)o(ter)o -1158
45 a($)h(Say)f("This)g(syste)o(m)g(is)h(a)g(cluste)o(r)f(member)o(.)-766
46 y($)h(Read/)o(Pro)o(m=)o("Ha)o(s)f(this)g(proced)o(ur)o(e)g(alread)o(y)g
(been)g(run)h(on)f(another)o 18 x(cluste)o(r)g(member)o(:)g("-)-1491 46 y
(SYS$I)o(NPU)o(T)g(Clust)o(er)-374 45 y($)h(If)g(Clust)o(er)o 18 x(Then)g
(GoTo)f(No_Cr)o(ea)o(te)-629 46 y($Not)o(_Cl)o(ust)o(er)o(:)-256 46 y($)h
(Read/)o(End)o(=C)o(lea)o(nu)o(p)f(-)-373 45 y(/Promp)o(t=")o(Di)o(sk)g
(quota)o 18 x(for)h(FAL)f(accoun)o(t)g(\(0)h(if)g(quota)o(s)f(not)h(enabl)o
(ed)o(\):)f(")h(-)-1275 46 y(SYS$C)o(OMM)o(AN)o(D)f(Quota)-374 46 y($)h
(If)g(F$Typ)o(e\()o(Quo)o(ta)o(\))f(.EQS.)g("INTE)o(GER)o(")g(Then)g(GoTo)g
(Set_Qu)o(ota)o -1060 45 a($)h(Say)f("Diskq)o(uot)o(a)g(must)g(be)h(an)g
(integ)o(er)o(")-707 46 y($)g(GoTo)f(FAL_P)o(ass)o(wo)o(rd_)o(OK)-433 46 y
($Set)o(_Qu)o(ota)o(:)-217 45 y($)h(Say)f("Setti)o(ng)g(up)h(new)f(FAL)g
(account)o(.")o -687 46 a($)h(Set)f(Defaul)o(t)g(SYS$SY)o(STE)o(M)-472 46 y
($)h(Set)f(NoOn)-197 45 y($)h(UAF)f(:=)h("$Auth)o(or)o(ize)o(")-413 46 y
($)g(UAF)f(Copy)g(DECNET)o 19 x(FAL/P)o(as)o(swo)o(rd)o(='F)o(AL)o(_Pa)o
(s)p(sw)o(or)o(d'/)o(UI)o(C=[)o(375)o(,3)o(75])o(/)p(D)o(ire)o(ct)o(ory)o
(=[F)o(AL)o(])-1472 46 y($)h(Creat)o(e/D)o(ir)o(ect)o(or)o(y)f(SYS$SY)o
(SRO)o(OT)o(:[F)o(AL)o(]/O)o(wn)p(e)o(r=)o([FA)o(L])o -942 45 a($No_)o
(Cre)o(ate)o(:)-217 46 y($)h(NCP)f(:=)h("$NCP")o -295 46 a($)g(NCP)f
(Define)o 18 x(Object)g(FAL)g(USER)g(FAL)h(Passw)o(ord)o 18 x('FAL_P)o
(ass)o(wor)o(d')o -1099 45 a($)g(NCP)f(Set)h(Objec)o(t)f(FAL)g(USER)g(FAL)h
(Passw)o(ord)o 18 x('FAL_Pa)o(ss)o(wor)o(d')-1041 46 y($)g(If)g(\(Quot)o
(a)f(.eq.)g(0\))h(.OR.)f(Clust)o(er)g(Then)g(GoTo)g(NO_QU)o(OTA)o -1001
46 a($)h(Say)f("Enter)o(ing)o 18 x(disk)g(quota)g(for)h(FAL)f(accoun)o(t.)o
-844 45 a($)h(Set)f(Defaul)o(t)g(SYS$SY)o(STE)o(M)-472 46 y($)h(PID)f(=)h
(F$GetJP)o(I\()o("",)o("PI)o(D")o(\))-511 46 y($)g(Open/)o(Wri)o(te)o 18 x
(Quota)f(SET_QU)o(OTA)o('P)o(ID')o(.C)o(OM)-727 45 y($)h(Write)o 18 x
(Quota)f("$)h(Run)f(SYS$SYS)o(TE)o(M:D)o(IS)o(KQU)o(OTA)o(")-825 46 y($)h
(Write)o 18 x(Quota)f("Add)g(FAL/Pe)o(rm=)o('')o(Quo)o(ta)o('")-727 46 y
($)h(Close)o 18 x(Quota)-256 45 y($)g(@SET_)o(QUO)o(TA)o('PI)o(D')o -334
46 a($)g(Delet)o(e)f(SET_QU)o(OT)o(A'P)o(ID')o(.C)o(OM;)o -550 46 a($No_)o
(Quo)o(ta:)o -197 45 a($)h(Say)f("Reset)o(tin)o(g)g(defaul)o(t)g(DECNE)o
(T)g(accoun)o(t)g(passwo)o(rd)o(")-962 46 y($)h(NCP)f(Define)o 18 x
(Executo)o(r)g(Nonpri)o(v)g(Passw)o(ord)o 18 x('DN_Pas)o(sw)o(ord)o(')-1021
46 y($)h(NCP)f(Set)h(Execu)o(to)o(r)f(Nonpri)o(v)g(Passwo)o(rd)o 19 x
('DN_P)o(as)o(swo)o(rd)o(')-962 45 y($)h(UAF)f(Modify)o 18 x(DECNET/)o
(Pas)o(sw)o(ord)o(=')o(DN_)o(P)p(a)o(ssw)o(ord)o(')-825 46 y($Cle)o(anu)o
(p:)-178 46 y($)h(Set)f(Defaul)o(t)g('Curre)o(nt_)o(De)o(fau)o(lt)o(')-609
45 y($)h(Set)f(Termin)o(al/)o(Ec)o(ho)-374 46 y($)h(Exit)576 428 y @F9 @sf
(36)-999 b
36 @eop1
35 @bop0
@F1 @sf
[<
000001C0000000000003E0000000000003E0000000000007F0000000000007F00000000000
0FF800000000000FF800000000000FF800000000001FFC00000000001FFC00000000003FFE
00000000003FCE00000000007FCF00000000007F870000000000FF878000000000FF038000
000000FF038000000001FF01C000000001FE01C000000003FE01E000000003FC00E0000000
07FC00F000000007F8007000000007F800700000000FF000380000000FF000380000001FF0
001C0000001FE0001C0000003FE0001E0000003FC0000E0000007FC0000F0000007F800007
0000007F800007000000FF000003800000FF000003800001FF000003C00001FE000001C000
03FE000001E000FFFFF0003FFF80FFFFF0003FFF80FFFFF0003FFF80>
49 41 -1 40 52] 86 @dc
[<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>
58 41 -3 40 65] 77 @dc
[<
FFFE000000FFFE000000FFFE0000000FE00000000FE00000000FE00000000FE00000000FE0
0000000FE00000000FE00000000FE00000000FE00000000FE1FC00000FE7FF80000FFE0FE0
000FF803F0000FF001F8000FE001FC000FE000FE000FE000FF000FE000FF000FE0007F000F
E0007F800FE0007F800FE0007F800FE0007F800FE0007F800FE0007F800FE0007F800FE000
7F000FE0007F000FE000FF000FE000FE000FE000FC000FF001F8000FF803F000FFFE07E000
FFE7FF8000FFE1FE0000>
33 39 -2 26 38] 112 @dc
@F9 @sf
[<
FFFFC0000F0070000F001C000F000E000F0007000F0007800F0003800F0003C00F0001C00F
0001C00F0001E00F0001E00F0001E00F0001E00F0001E00F0001E00F0001E00F0001E00F00
01C00F0001C00F0003C00F0003800F0007000F0007000F000E000F003C000F00F000FFFFC0
00>
27 28 -2 27 32] 68 @dc
@F10 @sf
[<
60F0F0600000000060F0F0F0F0F0F0F0F0F0F0F0F0F060>
4 23 -8 22 20] 33 @dc
[<
01C00003E00003E0000360000360000770000770000770000630000E38000E38000E38000E
38001C1C001C1C001C1C001C1C001C1C00380E00380E00380E00FC1F80FC1F80>
17 23 -1 22 20] 86 @dc
[<
07C01FF03838701CF01EE00EE00EE00EE00E701C38381FF003801EF0701CE00EE00EE00EE0
0E701C783C3FF80FE0>
15 23 -2 22 20] 56 @dc
35 @eop0
0 0 35 @bop1 262 307 a @F1 @sf(B)68 b(VMS)23 b(Script)-476 91 y @F9 @sf
(This)10 b(script)i(is)f(courtesy)h(of)e(Kevin)i(Ob)q(erman)f(of)f(La)o
(wrence)j(Liv)o(ermore)d(National)g(Labs.)-1432 50 y(It)18 b(is)h(used)h
(on)f(DEC)f(VMS)h(systems)h(to)f(close)g(a)g(n)o(um)o(b)q(er)g(of)f(the)i
(standard)f(created)-1430 50 y(b)o(y)d(the)i(normal)e(installation)g(of)g
(DECNET.)h(Rather)h(than)f(t)o(yping)f(this)h(in)g(b)o(y)g(hand,)-1432 50 y
(please)c(request)h(one)f(b)o(y)g(electronic)h(mail.)o 17 x(This)e(DCL)h
(script)g(is)g(pro)o(vided)g(for)f(referenc)q(e)-1430 49 y(purp)q(oses)j
(only)e(and)h(is)f(not)h(guaran)o(teed)h(or)f(w)o(arran)o(ted)g(in)f(an)o
(y)h(w)o(a)o(y)m(.)-1127 88 y @F10 @sf($)19 b(Type)f(SYS$I)o(NPU)o(T)-315
91 y(This)o 19 x(proce)o(du)o(re)g(chang)o(es)g(the)g(passwo)o(rd)o 19 x
(for)g(the)g(default)o 18 x(DECnet)g(accou)o(nt)o 19 x(and)-1374 45 y
(sets)o 19 x(up)g(a)i(new)e(accoun)o(t)g(for)g(FAL)h(activ)o(ity)o(.)f(It)h
(preve)o(nts)o 18 x(unautho)o(ri)o(zed)o 18 x(users)-1374 46 y(from)o 19 x
(makin)o(g)f(use)g(of)h(the)g(defau)o(lt)o 19 x(DECn)o(et)f(accou)o(nt)g
(for)g(any)h(purpo)o(se)o 19 x(exce)o(pt)-1335 46 y(file)o 19 x(trans)o
(fe)o(r.)-276 91 y(This)o 19 x(proce)o(du)o(re)f(assum)o(es)g(a)h(defau)o
(lt)f(DECne)o(t)g(accoun)o(t)g(named)g(DECNE)o(T)g(using)o 19 x(a)-1334
46 y(dire)o(cto)o(ry)g(on)g(SYS$SYS)o(ROO)o(T.)o 18 x(If)h(this)f(is)h
(not)g(the)f(case)g(on)h(this)f(system)o(,)g(do)-1334 45 y(not)g(procee)o
(d!)o 38 x(It)h(will)f(use)g(UIC)h([375,)o(375)o(].)f(If)g(this)h(UIC)f
(is)h(alrea)o(dy)f(in)-1295 46 y(use,)o 19 x(do)g(not)h(conti)o(nue)o(.)
-413 91 y($)g(Read/)o(End)o(=C)o(lea)o(nu)o(p/P)o(rom)o(pt)o(="C)o(on)o
(tin)o(ue)o 19 x([N]:)f(")h(SYS$C)o(OMM)o(AND)o 18 x(OK)-1118 46 y($)g(If)g
(.NOT.)o 18 x(OK)g(Then)f(Exit)-452 46 y($)h(Say)f(:=)h("Write)o 18 x
(SYS$OUT)o(PU)o(T")-531 45 y($)g(Curre)o(nt_)o(De)o(fau)o(lt)o 19 x(=)g
(F$Env)o(iro)o(nm)o(ent)o(\(")o(DEF)o(AUL)o(T")o(\))-864 46 y($)g(Has_P)o
(riv)o(s)f(=)h(F$Priv)o(\("C)o(MK)o(RNL)o(,O)o(PER)o(,S)o(YSP)o(RV")o(\))
-825 46 y($)g(If)g(Has_P)o(ri)o(vs)f(Then)g(GoTo)g(Privs)o(_OK)o -648 45 a
($)h(Say)f("This)g(proce)o(dur)o(e)g(requir)o(es)o 19 x(CMKR)o(NL,)o 18 x
(OPER,)g(and)h(SYSPR)o(V.)o(")-1119 46 y($)g(Exit)-119 46 y($Pri)o(vs_)o
(OK:)o -197 45 a($)g(On)g(Contr)o(ol)o(_Y)f(Then)g(GoTo)g(Clean)o(up)-629
46 y($)h(On)g(Error)o 18 x(Then)f(GoTo)g(Cleanup)o -550 46 a($)h(Set)f
(Termin)o(al/)o(No)o(Ech)o(o)-413 45 y($)h(Read/)o(End)o(=C)o(lea)o(nu)o
(p/P)o(rom)o(pt)o(="P)o(le)o(ase)o 18 x(enter)f(new)g(default)o 18 x
(DECnet)g(passw)o(or)o(d:)g(")h(-)-1393 46 y(SYS$Co)o(mma)o(nd)o 18 x
(DN_Pass)o(wor)o(d)-472 46 y($)g(Say)f(")h(")-176 45 y($)g(If)g(F$Len)o
(gt)o(h\(D)o(N_)o(Pas)o(swo)o(rd)o(\))f(.GT.)g(7)h(Then)f(GoTo)g(DN_Pass)o
(wor)o(d_)o(OK)-1139 46 y($)h(Say)f("Minim)o(um)g(passw)o(ord)o 18 x
(length)o 19 x(is)g(8)i(chara)o(ct)o(ers)o(")-923 46 y($)f(GoTo)f(Privs)o
(_OK)o -295 45 a($DN_)o(Pas)o(swo)o(rd)o(_OK)o(:)-315 46 y($)h(Read/)o
(End)o(=C)o(lea)o(nu)o(p/P)o(rom)o(pt)o(="E)o(nt)o(er)f(new)g(FAL)h(passw)o
(or)o(d:)f(")h(SYS$CO)o(MM)o(AND)o 18 x(FAL_Pas)o(sw)o(ord)o -1511 46 a($)g
(Say)f(")h(")-176 45 y($)g(If)g(F$Len)o(gt)o(h\(F)o(AL)o(_Pa)o(ssw)o(or)o
(d)p(\))f(.GT.)g(7)h(Then)f(GoTo)g(FAL_Pa)o(ssw)o(or)o(d_O)o(K)-1178 46 y
($)h(Say)f("Minim)o(um)g(passw)o(ord)o 18 x(length)o 19 x(is)g(8)i(chara)o
(ct)o(ers)o(")-923 46 y($)f(GoTo)f(DN_Pa)o(ssw)o(or)o(d_O)o(K)-413 45 y
($FAL)o(_Pa)o(ssw)o(or)o(d_O)o(K:)o -334 46 a($)h(Set)f(Termin)o(al/)o(Ec)o
(ho)-374 46 y($)h(Type)f(SYS$I)o(NPU)o(T)-315 91 y(The)g(FAL)g(account)o
18 x(require)o(s)g(a)h(disk)f(quota.)o 18 x(This)g(quota)g(should)o 18 x
(be)h(large)-1276 46 y(enou)o(gh)f(to)h(accom)o(od)o(ate)o 18 x(the)g(the)f
(files)g(typica)o(ll)o(y)g(loaded)o 18 x(into)g(this)h(acco)o(unt)o(.)-1374
45 y(Shou)o(ld)f(the)g(qouta)g(be)h(exhau)o(ste)o(d,)o 19 x(the)f(system)o
18 x(will)g(fail)g(to)h(perfor)o(m)f(defaul)o(t)-1374 46 y(DECn)o(et)g
(file)g(trans)o(fer)o(s.)262 142 y @F9 @sf(35)-999 b
35 @eop1
34 @bop0
@F9 @sf
[<
FFF0000F00000F00000F00000F00000F00000F00000F00000F00000F00000F00000F00000F
00000FFF800F00E00F00780F003C0F001C0F001E0F001E0F001E0F001E0F001E0F001C0F00
3C0F00780F00E0FFFF80>
23 28 -2 27 28] 80 @dc
[<
1F0021C040E0F0F0F878F878F8787078007800780078007800780078007800780078007800
780078007800780078007800780078007800F81FFF>
16 29 -1 27 21] 74 @dc
34 @eop0
0 0 34 @bop1 312 307 a @F9 @sf(1.)20 b(Where)e(practical,)e(eac)o(h)h
(user)h(should)f(ha)o(v)o(e)f(his)g(o)o(wn)h(system)g(disks)g(and)f(hence)
-1327 50 y(b)q(e)f(partially)d(insulated)i(from)f(p)q(oten)o(tial)g
(mistak)o(es.)-895 83 y(2.)20 b(When)c(p)q(eople)h(are)f(sharing)g(disks)g
(ha)o(v)o(e)f(an)h(explicit)g(c)o(hec)o(k)g(out)g(p)q(olicy)f(logging)-1330
50 y(the)d(users)h(of)e(eac)o(h)h(disk.)18 b(Be)12 b(sure)h(to)e(set)h
(the)h(write-protect)g(them)e(and)h(teac)o(h)g(the)-1328 50 y(users)g(ho)o
(w)d(to)h(write)h(protect)g(there)g(o)o(wn)f(system)h(disks.)17 b(\(Most)
10 b(PC)g(programs)g(are)-1328 49 y(sold)h(on)f(write-protected)q 12 x
(disks,)h(this)f(is)h(not)g(true)g(of)f(most)h(Macin)o(tosh)f(programs.)
-1382 83 y(3.)20 b(Keep)13 b(a)d(bac)o(k)h(up)h(cop)o(y)f(of)f(all)g
(system)i(programs)f(and)g(system)g(programs)g(to)g(allo)o(w)-1330 50 y
(for)j(easy)g(restoration)g(of)g(the)g(system.)-672 83 y(4.)20 b(W)m(rite)
13 b(lo)q(c)o(k)g(originals)f(and)h(k)o(eep)h(them)g(under)g(lo)q(c)o(k)f
(and)g(k)o(ey)g(for)g(emergency)i(use)-1328 50 y(only)m(.)-140 83 y(5.)20 b
(Ha)o(v)o(e)13 b(an)g(explicit)g(p)q(olicy)f(and)h(teac)o(h)h(users)h(ab)q
(out)e(soft)o(w)o(are)g(theft)h(and)f(soft)o(w)o(are)-1329 50 y(ethics.)
-168 83 y(6.)20 b(T)m(eac)o(h)13 b(users)h(to)f(bac)o(k)g(up)g(their)g
(data.)18 b(Just)13 b(as)g(with)g(large)f(computers,)i(the)f(only)-1329
50 y(real)h(defense)h(from)f(disaster)g(is)g(redundancy)m(.)-778 83 y(Ev)o
(en)e(when)h(the)f(computer)h(cen)o(ter)h(is)e(not)f(pro)o(viding)g(the)i
(mac)o(hines)f(themselv)o(es,)h(it)-1432 50 y(should)i(generally)f(help)i
(to)f(teac)o(h)h(users)h(ab)q(out)e(bac)o(kups,)g(write)h(protection,)g
(soft)o(w)o(are)-1432 49 y(ethics)e(and)f(related)i(issues.)k(Most)14 b
(PC)f(users)i(do)f(not)f(realize)h(that)g(they)g(are)g(their)g(o)o(wn)-1432
50 y(system)i(managers)f(and)h(m)o(ust)f(tak)o(e)h(the)g(resp)q(onsibilit)o
(y)f(of)g(care)i(for)e(their)h(systems)h(or)-1432 50 y(risk)c(the)i
(consequence)q(s.)297 1387 y(34)-999 b
34 @eop1
33 @bop0
@F5 @sf
[<
0001C000000001C000000003E000000003E000000007F000000007F000000007F00000000F
D80000000FD80000001FCC0000001F8C0000003F8E0000003F060000007F070000007E0300
00007E03000000FC01800000FC01800001FC00C00001F800C00003F800E00003F000600007
F000700007E000300007E00030000FC0001800FFFC01FF80FFFC01FF80>
33 28 -1 27 36] 86 @dc
/@F4 @newfont
@F4 @sf
[<
03F00FF81FFC3E0E78077007F000E000E000E000E000E0007000780C3C1E1FFE0FFC03F8>
16 18 -3 17 22] 99 @dc
[<
03E0000FF8001FFC003C1E00780F00700700F00780E00380E00380E00380E00380E0038070
0700780F003C1E001FFC000FF80003E000>
17 18 -2 17 22] 111 @dc
[<
FE3C78FE7CF8FE7CF83870E03870E03870E03870E03870E03870E03870E03870E03870E038
70E03C78E03C78E0FFFFE0FFEFC0F9C380>
21 18 0 17 22] 109 @dc
[<
0F83E03FE7E07FFFE0783E00E00E00E00E00E00E00700E003E0E001FFE0003FE00000E0000
0E00300E00783C007FF8003FF0001FE000>
19 18 -2 17 22] 97 @dc
[<
7FC7F0FFE7F87FC7F00E03800E03800E03800E03800E03800E03800E03800E03800E03800E
03800F03800F87807FFF00FEFE007E3C00>
21 18 0 17 22] 110 @dc
[<
07C7E00FE7F01FFFE03C1F00700F00700F00E00700E00700E00700E00700E00700E0070070
0700780F003C1F001FFF000FF70003C700000700000700000700000700003F00007F00003F
00>
20 25 -1 24 22] 100 @dc
[<
70F8F8F870>
5 5 -8 4 22] 46 @dc
@F4 @sf
[<
03F00FFC1FFE3C0F78077007E000E000FFFFFFFFFFFFE0077007780E3C1E1FFC0FF803E0>
16 18 -3 17 22] 101 @dc
[<
7F1FC0FF3FE07F1FC00E0E00071C00073C0003B80001F00001E00000E00001F00003F00003
B800073C000F1C007F1FC07F3FC07F1FC0>
19 18 -1 17 22] 120 @dc
@F9 @sf
[<
07C03E001830E1803009C04070078040E0070020E00F0020E01C8000E03C4000E038400060
7020006070200030E0100010E0100009C0080005C00400038004000380060003800F0003C0
3FE00740000007200000071000000710000007080000070800000708000007080000030800
00030800000190000000E00000>
27 31 -2 29 32] 38 @dc
@F4 @sf
[<
00E00001F00001F00003B80003B80003B800071C00071C00071C00071C000E0E000E0E000E
0E001E0F001C07007F1FC0FF1FE07F1FC0>
19 18 -1 17 22] 118 @dc
[<
7FFFFFFF7FFF01C001C001C001C001C001C001C001C001C001C001C001C07FC07FC07FC000
00000000000000018003C003C00180>
16 26 -3 25 22] 105 @dc
[<
FFFC00FFFC00FFFC0007000007000007000007000007000007000007000007000007800007
800007C00007F040FF7FE0FF3FE0FF0FC0>
19 18 -1 17 22] 114 @dc
[<
03E3F007FBF80FFFF00E0F800E03800E03800E03800E03800E03800E03800E03800E03800E
03800E03800E03807E1F80FE3F807E1F80>
21 18 0 17 22] 117 @dc
[<
C7E0FFF8FFFCF81EF00EE00E600E003C07F81FF07F807000E01CE01CF03C7FFC3FFC0FEC>
15 18 -3 17 22] 115 @dc
[<
FFFF80FFFF80FFFF80>
17 3 -2 13 22] 45 @dc
[<
FFFF80FFFF80FFFF8001C00001C00001C00001C00001C00001C00001C00001C00001C00001
C00001C00001C00001C00001C00001C00001C00001C00001C00001C000FFC000FFC000FFC0
00>
17 25 -2 24 22] 108 @dc
@F4 @sf
[<
00F80001FC0003FE0007870007038007038007038007010007000007000007000007000007
0000070000070000FFFF00FFFF007FFF00070000070000070000070000030000>
17 23 -1 22 22] 116 @dc
@F4 @sf
[<
7FC000FFE0007FC0000E00000E00000E00000E00000E00000E00000E3C000EFF000FFF800F
83C00F01E00E00E00E00700E00700E00700E00700E00700E00700E00E00F00E00F83C07FFF
80FEFF007E3E00>
20 27 0 17 22] 112 @dc
@F5 @sf
[<
FFC00030FFC000700C0000F00C0000F00C0001F00C0003F00C0007F00C000FF00C001FF00C
001FB00C003F300C007F300C00FE300C01FC300C01F8300C03F0300C07F0300C0FE0300C1F
C0300C1F80300C3F00300C7E00300CFE00300DFC00300FF800300FF00030FFE003FFFFE003
FF>
32 28 -2 27 37] 78 @dc
33 @eop0
0 0 33 @bop1 365 307 a @F9 @sf(migh)o(t)14 b(include)i(destruction)g(of)f
(a)g(system)h(program,)e(in)o(ten)o(tional)g(or)i(acciden)o(tal)-1329 50 y
(mo)q(di\014cation)d(of)g(a)h(system)h(program)e(or)h(en)o(try)g(of)f(a)h
(virus.)-967 66 y(T)m(o)i(com)o(bat)g(this,)g(systematic)h(c)o(hec)o(king)g
(or)f(reinstallation)f(of)h(soft)o(w)o(are)g(from)g(a)-1329 50 y(kno)o(wn)
10 b(protected)i(source)f(is)f(recommended.)18 b(In)10 b(most)g(shared)h
(facilities,)e(refresh-)-1327 50 y(ing)k(the)i(net)o(w)o(ork,)f(hard-disk)f
(or)h(\015opp)o(y-library)f(w)o(eekly)h(should)f(b)q(e)i(considered.)-1328
50 y(Shared)h(\015oppies)g(should)f(b)q(e)g(write)h(protected)h(and)e(the)h
(original)d(copies)j(of)f(pro-)-1329 50 y(grams)k(should)g(b)q(e)h(k)o
(ept)f(under)h(lo)q(c)o(k)f(and)g(k)o(ey)g(and)g(used)h(only)e(to)h(mak)o
(e)g(new)-1328 49 y(copies.)-120 67 y(T)m(rusted)c(serv)o(er)q 15 x(the)g
(pro)o(vide)g(read)f(only)g(access)i(to)e(the)h(system)h(\014les)e(ha)o(v)o
(e)g(b)q(een)-1327 50 y(succe)q(ssfully)19 b(used)g(in)f(some)h(univ)o
(ersities.)32 b(It)18 b(is)g(absolute)h(critical)f(that)g(these)-1327 50 y
(mac)o(hines)c(b)q(e)h(used)g(only)e(as)h(serv)o(ers.)-709 83 y @F5 @sf
(Viruses.)20 b @F9 @sf(A)12 b(n)o(um)o(b)q(er)h(of)f(computer)i(viruses)g
(ha)o(v)o(e)e(b)q(een)i(found)e(for)h(micro-computers.)-1329 49 y(Man)o(y)k
(exp)q(erts)q 19 x(consider)h(this)g(problem)f(to)g(b)q(e)h(practically)f
(solv)o(ed)h(for)f(Macin-)-1329 50 y(toshes)e(an)f(so)q(on)g(to)g(b)q(e)g
(solv)o(ed)g(for)f(IBM-st)o(yle)i(PC's.)-866 67 y(Tw)o(o)i(basic)h(t)o(yp)q
(es)g(of)e(an)o(ti-viral)g(soft)o(w)o(are)h(are)h(generally)f(a)o(v)n(ail)o
(able.)27 b(The)18 b(\014rst)-1328 49 y(t)o(yp)q(e)13 b(is)f(installed)g
(in)o(to)g(the)g(op)q(erating)h(and)f(w)o(atc)o(hes)h(for)f(virus's)g
(trying)g(to)g(infect)-1328 50 y(a)k(mac)o(hine.)24 b(Examples)15 b(of)h
(this)f(on)h(the)h(Mac)f(include)g(Seman)o(tic's)f(SAM)h(\(P)o(art)-1328
50 y(1\),)e(Don)f(Bro)o(wn's)h(v)n(accine)g(and)g(Chris)g(Johnson's)g
(Gate)g(Keep)q(er.)-1078 66 y(The)f(second)g(t)o(yp)q(e)f(of)g(an)o
(ti-viral)o 11 x(soft)o(w)o(are)g(scans)h(the)g(disk)e(to)h(detect)q 13 x
(and)g(correct)-1327 50 y(infected)h(programs.)k(On)11 b(the)h(Mac,)g(SAM)g
(\(P)o(art)g(2\),)f(H.)g(G.)g(C.)g(Soft)o(w)o(are's)g(Virex,)-1329 50 y
(and)j(John)g(Norstab's)g(Disin\014nct)g(are)g(commonly)f(used)i(disk)e
(scanners)q(.)-1172 66 y(On)19 b(the)f(PC)g(t)o(yp)q(e)h(of)e(mac)o(hines)h
(w)o(e)g(\014nd)g(three)i(t)o(yp)q(es)e(of)g(virus.)30 b(The)18 b(\014rst)h
(of)-1329 50 y(these)14 b(is)d(a)h(b)q(o)q(ot)g(sector)h(virus)f(that)g
(alters)g(the)h(mac)o(hine)e(language)g(start)i(up)f(co)q(de)-1328 50 y
(found)17 b(on)g(the)g(disk)o(ette.)29 b(The)17 b(second)i(infects)e(the)h
@F4 @sf(command.co)o(m)e @F9 @sf(startup)i(\014le)-1329 50 y(and)c(the)g
(third)g(alters)h(the)f @F4 @sf(exe)f @F9 @sf(\(mac)o(hine)h(language)f
(executable)i(\014les\).)-1173 66 y(Flu)d(Shot)g(Plus)h(b)o(y)f(Ross)g
(Green)o(b)q(erg)i(is)e(an)g(example)g(of)f(a)h(program)g(to)g(deal)g
(with)-1329 50 y @F4 @sf(command.com)f @F9 @sf(&)i(some)g @F4 @sf(exe)f
@F9 @sf(virus.)18 b(No)o(virus)12 b(and)h(co)q(op)q(erativ)o(ely)g(built)f
(b)o(y)h(Y)m(ale,)-1330 50 y(Alemeda)h(and)g(Merit)g(is)g(one)g(of)f(the)i
(b)q(o)q(ot)f(trac)o(k)g(repair)g(systems.)-1078 66 y(There)k(are)f(a)g(n)o
(um)o(b)q(er)g(of)f(electronic)h(discussion)h(groups)e(that)h(deal)g(with)f
(com-)-1329 50 y(puter)j(virus.)31 b(On)18 b(BITNET)h(\(and)f(forw)o
(arded)g(to)g(other)h(net)o(w)o(orks\),)g @F4 @sf(virus-l)-1330 50 y @F9 @sf
(supp)q(orts)14 b(discussion)g(ab)q(out)f(PC)g(and)g(Mac)g(virus,)f(while)h
@F4 @sf(valert)f @F9 @sf(is)g(used)i(to)f(an-)-1329 50 y(nounce)f(the)g
(disco)o(v)o(ery)g(of)f(new)g(ones.)18 b(Compuserv)o(e's)12 b @F4 @sf
(macpro)e @F9 @sf(serv)o(es)j(as)e(a)g(forum)-1329 50 y(to)j(discuss)h
(Macin)o(tosh)f(viruses.)-629 83 y @F5 @sf(Net)o(w)o(ork.)20 b @F9 @sf
(The)14 b(third)g(is)f(issue)i(is)e(the)i(placemen)o(t)f(of)f(single)g
(user)i(computers)g(on)e(net-)-1328 49 y(w)o(orks.)18 b(Since)12 b(there)i
(is)e(little)f(or)i(no)e(authen)o(tication)h(on)g(\(or)g(of)s(\))g(these)i
(mac)o(hines,)-1329 50 y(care)j(m)o(ust)e(b)q(e)i(tak)o(en)e(to)h(not)f
(place)h(sensitiv)o(e)g(\014les)g(up)q(on)g(them)g(in)f(suc)o(h)h(a)g
(con-)-1329 50 y(\014guration.)-291 83 y @F5 @sf(Reliabilit)o(y)l(.)21 b
@F9 @sf(Finally)8 b(there)k(is)f(a)f(reliabili)o(t)o(y)f(issue.)18 b(Most)
10 b(single)h(user)g(computers)h(w)o(ere)-1328 50 y(nev)o(er)j(designed)g
(for)f(life)f(and)h(time)g(critical)g(applications.)k(Before)d(using)f
(suc)o(h)h(a)-1329 50 y(computer)g(in)e(suc)o(h)i(an)f(application,)o 13 x
(exp)q(ert)h(advise)f(should)f(b)q(e)i(sough)o(t.)-1226 91 y(In)d(the)i
(use)f(of)f(single)g(user)i(computers,)g(there)f(are)g(some)g(basic)g
(issues)h(that)e(need)i(b)q(e)-1431 50 y(considered)h(and)f(some)g(simple)f
(advice)h(that)g(should)f(b)q(e)i(giv)o(en.)-968 50 y(In)f(the)g(advice)g
(column,)f(there)i(are)f(a)g(few)g(basic)g(p)q(oin)o(ts.)-287 133 y(33)-999 b
33 @eop1
32 @bop0
@F1 @sf
[<
00FF800003FFF0000FFFF8001F01FE003C007F0078003F8078003F80FC001FC0FE001FC0FE
001FE0FE001FE0FE001FE07C001FE018001FE000001FE000001FE000001FC000001FC00000
1F800C003F000E003E000F80FC000FFFF8000E7FC0000E0000000E0000000E0000000E0000
000E0000000E0000000FFE00000FFFC0000FFFE0000FFFF0000FFFF8000FFFFC000FFFFE00
0F803F000C000300>
27 39 -3 38 34] 53 @dc
[<
FFFFF0003FF0FFFFF001FFF8FFFFF003FE1C03FC0007F80E03FC000FF80703FC001FF80703
FC001FF00703FC001FF00003FC001FF00003FC001FF00003FC001FE00003FC001FE00003FC
001FE00003FC001FE00003FC001FE00003FC001FC00003FC003F800003FC003F800003FC00
7F000003FC00FC000003FFFFF0000003FFFFFE000003FC007FC00003FC001FE00003FC0007
F80003FC0007F80003FC0003FC0003FC0003FE0003FC0003FE0003FC0003FE0003FC0003FE
0003FC0003FE0003FC0003FE0003FC0003FC0003FC0007FC0003FC0007F80003FC000FF000
03FC007FE000FFFFFFFF8000FFFFFFFE0000FFFFFFE00000>
48 41 -3 40 52] 82 @dc
@F5 @sf
[<
07FFFE0007FFFE00001F8000001F8000001F8000001F8000001F8000001F8000001F800000
1F8000001F8000001F8000001F8000001F8000001F8000001F8000001F8000001F8000C01F
8030C01F8030C01F8030C01F8030E01F8070601F8060701F80E0781F81E07FFFFFE07FFFFF
E0>
28 28 -2 27 33] 84 @dc
[<
07FF001E03C07800F0700070F00078F00078F000787801F81FFFF00FFFE01FFFC01FFF0018
00001800001000001BF8000E0E001E0F001C07003C07803C07803C07803C07801C07301E0F
380E0F3803F8F0>
21 27 -1 17 24] 103 @dc
@F5 @sf
[<
001FFC001FFC0003E00003E00003E00003E00003E00003E003F3E00E0FE01C07E03C03E07C
03E07803E0F803E0F803E0F803E0F803E0F803E0F803E07803E07C03E03C03E01E07E00F0C
E003F060>
22 26 -2 17 25] 113 @dc
32 @eop0
0 0 32 @bop1 262 307 a @F1 @sf(5)69 b(Reco)n(v)n(ering)22 b(F)-6 b(rom)25 b
(Disasters)-911 91 y @F9 @sf(Inciden)o(t)18 b(reco)o(v)o(ery)h(is)e(the)i
(\014nal)e(p)q(ortion)g(of)g(the)h(of)g(the)g(inciden)o(t)g(handling)e
(pro)q(cess)q(.)-1431 50 y(Lik)o(e)e(the)i(other)g(p)q(ortions)f(of)f
(inciden)o(t)h(handling,)f(it)h(is)g(not)g(particularly)f(di\016cult)g
(but)-1431 50 y(is)f(su\016cien)o(tly)h(in)o(tricate)g(to)g(allo)o(w)e
(for)i(man)o(y)f(errors.)-864 91 y @F5 @sf(T)l(elling)j(ev)o(ery)o(one)e
(that)h(is)h(o)o(v)o(er.)k @F9 @sf(F)m(or)11 b(a)g(large)g(inciden)o(t,)h
(it)f(is)h(not)f(un)o(usual)g(to)h(ha)o(v)o(e)-1329 50 y(con)o(tacted)j(p)q
(eople)e(at)h(a)f(dozen)h(or)f(more)g(sites.)19 b(It)13 b(is)h(imp)q
(ortan)o(t)e(to)h(let)h(ev)o(ery)o(one)-1328 50 y(kno)o(w)h(that)f(y)o(ou)h
(are)g(done)g(and)g(to)f(b)q(e)i(sure)g(to)e(giv)o(e)h(y)o(our)f
(colleagues)h(the)g(infor-)-1329 49 y(mation)h(that)i(they)g(need.)29 b
(It)17 b(is)h(also)e(imp)q(ortan)o(t)h(that)g(y)o(our)h(sta\013)f(kno)o
(ws)h(that)-1329 50 y(things)e(are)g(o)o(v)o(er)g(so)f(that)h(they)g(can)g
(return)h(to)f(normal)e(w)o(ork.)24 b(Generally)15 b(a)g(lot)-1329 50 y
(of)h(p)q(eople)h(need)g(to)g(thank)o(ed)f(for)g(the)h(extra)g(hours)g
(and)f(e\013ort)h(that)g(they)g(ha)o(v)o(e)-1329 50 y(con)o(tributed.)-323
83 y @F5 @sf(Remo)o(ving)d(all)j(T)l(o)q(ols.)k @F9 @sf(Man)o(y)14 b(of)g
(the)g(to)q(ols)g(that)g(w)o(ere)h(installed)f(and)g(using)g(during)-1329
50 y(an)j(inciden)o(t)h(need)g(to)f(remo)o(v)o(ed)g(from)f(the)i(system.)
29 b(Some)17 b(will)f(in)o(terfere)i(with)-1329 50 y(p)q(erformance.)30 b
(Others)19 b(are)f(w)o(orth)g(stealing)f(b)o(y)h(a)f(clev)o(er)h(attac)o
(k)o(er.)30 b(Simila)o(rly)-1330 49 y(a)16 b(future)h(attac)o(k)o(er)f
(that)g(gets)h(a)e(c)o(hance)j(to)d(lo)q(ok)g(at)h(the)h(to)q(ols)e(will)g
(kno)o(w)g(a)h(lot)-1329 50 y(ab)q(out)h(ho)o(w)f(y)o(ou)g(are)h(going)e
(to)i(trac)o(k)g(him.)25 b(Often)17 b(extra)g(accoun)o(ts)g(are)g(added)
-1328 50 y(for)d(handling)e(the)j(inciden)o(t.)j(These)d(need)g(to)f(b)q
(e)g(remo)o(v)o(ed.)-1070 83 y @F5 @sf(File)i(and)f(Service)h(Restorat)o
(ion.)k @F9 @sf(Returning)14 b(the)h(\014le)f(system)i(to)e(a)g(\\kno)o
(wn)g(go)q(o)q(d)-1329 50 y(state")i(is)g(often)f(the)h(most)g(di\016cult)e
(part)i(of)f(reco)o(v)o(ery)m(.)23 b(This)16 b(is)f(esp)q(ec)q(ially)g
(true)-1328 50 y(with)f(long)f(inciden)o(ts.)-460 83 y @F5 @sf(Rep)q
(ortin)o(g)i(Requiremen)n(ts.)k @F9 @sf(Often,)11 b(esp)q(ec)q(ially)e(if)h
(la)o(w)f(enforcemen)o(t)i(agencies)g(ha)o(v)o(e)-1329 49 y(b)q(ecome)k
(in)o(v)o(olv)o(ed,)d(a)i(formal)e(rep)q(ort)j(will)d(b)q(e)j(required.)
-1012 83 y @F5 @sf(History)l(.)20 b @F9 @sf(After)14 b(ev)o(erything)f(is)f
(o)o(v)o(er,)h(a)f(\014nal)g(reconstruc)q(tion)h(of)f(the)i(ev)o(en)o(ts)f
(is)g(appro-)-1329 50 y(priate.)18 b(In)c(this)g(w)o(a)o(y)m(,)f(ev)o(ery)o
(one)h(on)g(y)o(our)g(sta\013)g(is)g(telling)f(the)h(same)g(story)m(.)-1323
83 y @F5 @sf(F)l(utur)o(e)h(Prev)o(en)n(tion)o(.)20 b @F9 @sf(It)10 b(is)g
(imp)q(ortan)o(t)f(to)g(mak)o(e)h(sure)g(that)g @F6 @sf(al)r(l)k @F9 @sf
(of)9 b(the)h(vulnerabilities)-1329 50 y(that)k(w)o(ere)h(used)g(in)e(or)h
(created)i(the)e(inciden)o(t)g(are)g(secure)q(d.)-1010 91 y(Just)e(after)g
(an)f(inciden)o(t,)h(it)f(is)g(lik)o(ely)f(to)i(b)q(e)g(a)f(go)q(o)q(d)g
(time)g(to)h(create)h(sensible)f(p)q(olicies)-1432 50 y(where)20 b(they)h
(ha)o(v)o(e)e(not)h(existed)g(in)g(the)g(past)g(and)g(to)f(request)j
(extra)e(equipmen)o(t)g(or)-1432 50 y(sta\016ng)c(to)g(increase)i(securit)o
(y)m(.)26 b(Similarl)o(y)m(,)o 16 x(it)16 b(is)g(a)h(logical)o 15 x(time)f
(for)h(someone)f(else)i(to)-1432 50 y(demand)13 b(stricter)j
(\(nonsensical\))e(p)q(olicies)g(to)g(promote)g(securit)o(y)m(.)-1060 137 y
@F1 @sf(A)68 b(Micro)24 b(Computers)-652 91 y @F9 @sf(While)15 b(the)i
(bulk)e(of)h(this)g(b)q(o)q(ok)g(and)g(class)g(has)h(concerned)h(m)o
(ulti-user)e(computers)h(on)-1432 50 y(net)o(w)o(orks,)d(micro)f
(computers)i(are)f(also)f(w)o(orth)h(some)g(atten)o(tions.)-1008 50 y
(Basically)f(there)i(are)f(four)g(issues)h(that)f(cause)h(concern.)-966
91 y @F5 @sf(Shared)o 15 x(Disks.)20 b @F9 @sf(In)g(man)o(y)e(settings,)k
(micro)c(computers)j(are)f(shared)g(among)e(man)o(y)-1329 50 y(users.)24 b
(Ev)o(en)15 b(if)g(eac)o(h)h(user)g(brings)f(his)g(o)o(wn)g(data,)g(often)g
(the)h(system)g(programs)-1329 50 y(are)h(shared)h(on)e(comm)o(unal)f
(hard-disk,)i(net)o(w)o(ork)g(or)f(library)g(or)g(\015oppies.)27 b(This)
-1329 49 y(means)10 b(that)g(a)f(single)g(error)i(can)e(damage)g(the)h(w)o
(ork)g(of)f(man)o(y)f(p)q(eople.)17 b(Suc)o(h)10 b(errors)-735 180 y(32)
-999 b
32 @eop1
31 @bop0
@F9 @sf
[<
E0E0E0E0>
3 4 -4 28 12] 95 @dc
31 @eop0
0 0 31 @bop1 262 307 a @F2 @sf(4.4)55 b(Exercise)-332 77 y @F9 @sf
(The)16 b(bulk)f(of)g(this)h(class)g(hour)g(is)g(reserv)o(ed)h(for)f(an)f
(inciden)o(t)h(handling)f(sim)o(ulatio)o(n.)22 b(A)-1431 50 y(facili)o(t)o
(y)9 b(will)g(b)q(e)i(describ)q(ed.)18 b(A)11 b(consensus)h(p)q(olicy)d
(for)h(inciden)o(t)g(handling)f(will)g(b)q(e)i(agreed)-1431 49 y(up)q(on)i
(and)h(then)h(the)f(sim)o(ulation)e(will)h(b)q(egin.)-680 50 y(During)f
(the)h(sim)o(ulatio)o(n,)e(the)i(e\013ect)q(s)h(of)e(the)h(attac)o(k)o
(ers)g(actions)g(and)f(those)i(of)e(third)-1432 50 y(parties)f(will)d(b)q
(e)k(describ)q(ed.)18 b(The)11 b(participan)o(ts)g(can)f(c)o(ho)q(ose)i
(actions)e(and)g(tak)o(e)h(measure-)-1431 50 y(men)o(ts)g(and)h(will)d(b)q
(e)j(informed)f(of)g(the)h(results)g(of)f(those)h(actions)g(and)f
(measuremen)o(ts.)19 b(In)-1432 50 y(a)9 b(su\016cien)o(tly)h(small)f(w)o
(orking)g(group)h(that)g(had)g(sev)o(eral)h(da)o(ys,)f(w)o(e)g(w)o(ould)f
(run)i(a)f(soft)o(w)o(are)-1432 49 y(sim)o(ulati)o(on;)j(but)i(as)g(man)o
(y)f(of)g(the)h(actions)g(tak)o(e)f(hours)h(\(e)5 b(_)-16 b(g)5 b(_)-16 b
(a)13 b(full)h(system)h(comparison)-1432 50 y(to)f(the)h(original)o 13 x
(distribution\),)f(w)o(e)g(will)f(pro)q(ceed)j(v)o(erbal)e(in)g(the)h
(short)g(v)o(ersion)g(of)f(this)-1432 50 y(w)o(orkshop.)512 1958 y(31)-999 b
31 @eop1
30 @bop0
@F2 @sf
[<
FFFFFFC000FFFFFFF80007F001FE0007F0007F0007F0003F8007F0003F8007F0001FC007F0
001FC007F0001FC007F0001FC007F0001FC007F0001FC007F0001F8007F0003F8007F0003F
0007F0007E0007F001FC0007FFFFF00007FFFFF00007F003F80007F000FC0007F000FE0007
F0007E0007F0007F0007F0007F0007F0007F0007F0007F0007F0007F0007F0007E0007F000
7E0007F000FC0007F001F800FFFFFFE000FFFFFF8000>
34 34 -2 33 40] 66 @dc
[<
0000FFE00000FFE000001F0000001F0000001F0000001F0000001F0000001F0000001F0000
001F0001FC1F0007FF9F000FC1DF001F007F003E003F007E001F007E001F00FC001F00FC00
1F00FC001F00FC001F00FC001F00FC001F00FC001F007C001F007E001F007E003F003F003F
001F006F000FC1C70007FF870000FE0300>
27 32 -2 21 30] 113 @dc
@F5 @sf
[<
01FFF801FFF8000F80000F80000F80000F80000F80000F80FFFFF8FFFFF8C00F80600F8030
0F80180F800C0F80060F80030F80018F80008F8000CF80006F80003F80001F80000F800007
80000380000180>
21 27 -1 26 24] 52 @dc
[<
FFFFC0FFFFC07FFFC03FFFC01FFFC00800E006006003006001806000E00000700000380000
1E00001F00000F800007C00007C00007E07803E0FC03E0FC03E0FC07E0FC07C0780FC0383F
801FFE0007F800>
19 27 -2 26 24] 50 @dc
[<
7FFF807FFF8003E00003E00003E00003E00003E00003E00003E00003E00003E00003E00003
E00003E00003E00003E00003E00003E00003E00003E00003E00003E000F3E000FFE0000FE0
0001E000006000>
17 27 -3 26 24] 49 @dc
[<
7FE1FFC07FE1FFC00F807C000F807C000F807C000F807C000F807C000F807C000F807C000F
807C000F807C000F807C000F807C000F807C000F807C000F807C00FFFFFFC0FFFFFFC00F80
7C000F807C000F807C000F807C000F807C000F807C1C0F807C3E07C07C3E03C03E3E01F03F
1C003FE3F8>
31 29 0 28 28] 11 @dc
@F5 @sf
[<
07F8001FFE00781F00780F80FC07C0FC07E0FC07E07807E03007E00007E00007C00007C000
0F80001E0003F800003C00001E00000F80000F803807C07C07C07E07C07C07C03C0F803C1F
001FFE0003F800>
19 27 -2 26 24] 51 @dc
@F5 @sf
[<
07F0001FFE00381F00600F80F007C0F807C0F807E0F807E07807E00007E00007E00007E000
07C0100780180F801E0E0019F8001800001800001800001800001FC0001FF8001FFC001FFE
001FFF00180180>
19 27 -2 26 24] 53 @dc
@F4 @sf
[<
00FC0003FF0007FFC00F03C01C3C00387E0078FF0071C38071C380E381C0E381C0E381C0E3
81C0E381C0E381C0E381C071C3C071C3C078FF80387F801C3F800F070007FE0003FC0000F8
00>
18 25 -2 24 22] 64 @dc
[<
7F87F0FFCFF07F87F00E07800E07000E0E000F1E000FBC000FF8000FF0000EF0000E78000E
3C000E1E000E0F000E7FE00E7FE00E7FE00E00000E00000E00000E00007E0000FE00007E00
00>
20 25 0 24 22] 107 @dc
30 @eop0
0 0 30 @bop1 262 307 a @F2 @sf(4.2)55 b(Basic)18 b(T)-5 b(ec)n(hniques)-545
77 y @F9 @sf(There)15 b(are)f(\014v)o(e)g(basic)g(sets)h(of)e(tec)o
(hniques)j(for)d(understanding)i(what)e(has)h(happ)q(ened.)-1399 108 y
@F5 @sf(4.2.1)47 b(Di\013erencing)-399 76 y @F9 @sf(Di\013erencing)12 b
(is)g(that)h(act)f(of)g(comparing)f(the)i(state)g(of)f(a)g(part)g(of)g
(the)h(computer)g(system)-1431 50 y(to)i(the)i(state)g(that)f(it)g(w)o(as)g
(in)f(previously)m(.)24 b(In)17 b(some)f(cases)h(w)o(e)f(ha)o(v)o(e)g
(compared)h(ev)o(ery)-1431 50 y(executable)h(system)g(\014le)f(with)g(the)g
(corresp)q(onding)h(\014le)f(on)g(the)h(original)d(distribution)-1432 50 y
(tap)q(e)9 b(to)h(\014nd)f(what)g(\014les)h(the)g(attac)o(k)o(er)g(ma)o(y)f
(ha)o(v)o(e)g(mo)q(di\014ed.)16 b(Chec)o(ksums)10 b(are)g(often)g(used)-1431
50 y(to)j(decre)q(ase)j(the)f(cost)f(of)g(di\013erencing.)19 b(Sometimes)
14 b(p)q(eople)h(lo)q(ok)e(only)h(for)f(di\013erence)q(s)-1430 49 y(in)g
(the)h(protection)h(mo)q(des)f(of)f(the)i(\014les.)-646 108 y @F5 @sf
(4.2.2)47 b(Finding)-306 77 y @F9 @sf(Finding)10 b(is)i(generally)f(c)o
(heap)q(er)i(than)e(di\013erencing.)18 b(Finding)11 b(is)g(the)i(act)e(of)g
(lo)q(oking)f(at)i(a)-1432 50 y(part)h(of)g(a)g(computer)h(system)g(for)f
(\014les)h(that)g(ha)o(v)o(e)f(b)q(een)i(mo)q(di\014ed)e(during)g(a)g
(particular)-1432 50 y(time)g(or)h(ha)o(v)o(e)g(some)g(other)g(in)o
(teresting)h(prop)q(ert)o(y)m(.)-822 107 y @F5 @sf(4.2.3)47 b(Sno)q(oping)
-339 77 y @F9 @sf(Sno)q(oping)11 b(is)h(the)h(act)f(of)g(placing)f
(monitors)h(on)g(a)g(system)h(to)f(rep)q(ort)h(the)g(future)g(actions)-1432
50 y(of)e(an)g(attac)o(k)o(er.)18 b(Often)12 b(a)f(scripting)h(v)o(ersion)g
(of)f(the)h(command)f(line)g(in)o(terpreter)i(is)f(used)-1431 50 y(or)h(a)h
(line)f(prin)o(ter)i(or)f(PC)g(is)f(spliced)i(in)e(to)h(the)g(incoming)f
(serial)h(line.)-1136 108 y @F5 @sf(4.2.4)47 b(T)l(rac)o(king)-326 76 y
@F9 @sf(T)m(rac)o(king)16 b(is)i(the)g(use)h(of)e(system)h(logs)f(and)h
(other)g(audit)f(trails)h(to)f(try)h(to)g(determine)-1431 50 y(what)c(an)h
(attac)o(k)o(er)g(has)g(done.)21 b(It)15 b(is)f(particularly)g(useful)h
(in)g(determining)f(what)h(other)-1431 50 y(mac)o(hines)e(migh)o(t)g(b)q
(e)i(in)o(v)o(olv)n(ed)e(in)h(an)f(inciden)o(t.)-778 108 y @F5 @sf(4.2.5)
47 b(Psyc)o(hology)-379 76 y @F9 @sf(A)16 b(wide)h(range)g(of)f(non-tec)o
(hnical)h(approac)o(hes)g(ha)o(v)o(e)g(b)q(een)h(emplo)o(y)o(ed)e(o)o(v)o
(er)h(the)g(y)o(ears)-1431 50 y(with)11 b(an)h(ev)o(en)h(wider)f(range)g
(of)g(results.)18 b(Among)11 b(these)j(approac)o(hes)f(ha)o(v)o(e)f(b)q
(een)h(lea)o(ving)-1433 50 y(messages)k(for)f(the)i(attac)o(k)o(er)f(to)f
(\014nd,)h(starting)g(talk)f(links,)g(calling)f(lo)q(cal)h(high)g(sc)o(ho)q
(ol)-1432 50 y(teac)o(hers,)f(etc.)-236 116 y @F2 @sf(4.3)55 b
(Prosecution)-417 77 y @F9 @sf(Prosecution)16 b(has)f(historically)f(b)q
(een)i(v)o(ery)f(di\016cult.)21 b(Less)16 b(than)f(a)g(y)o(ear)g(ago,)f
(the)i(FBI)-1431 49 y(advised)c(me)h(that)g(it)g(w)o(as)g(essen)o(tially)f
(imp)q(ossible)h(to)f(succe)q(ed)j(in)d(a)h(prosecution.)18 b(More)-1431
50 y(recen)o(tly)m(,)13 b(FBI)h(agen)o(t)f(Da)o(v)o(e)g(Ico)o(v)o(e,)g(\()p
@F4 @sf(icove@doc)o(kmast)o(er.cn)o(sc)p(.m)o(il)p @F9 @sf(,)e(703{640{11)o
(76\))-1433 50 y(has)k(assured)i(me)e(that)h(the)g(FBI)g(will)e(b)q(e)i
(taking)f(a)g(more)g(activ)o(e)h(role)f(in)g(the)h(prosecu-)-1430 50 y
(tion)f(of)g(computer)i(break-ins)f(and)g(has)g(expresse)q(d)h(in)o
(terest)h(in)d(lending)h(assistance)h(to)-1432 50 y(in)o(v)o(estigation)
12 b(where)j(prosecution)g(is)f(appropriate.)-154 344 y(30)-999 b
30 @eop1
29 @bop0
@F1 @sf
[<
007FFFF8007FFFF8007FFFF80000FE000000FE000000FE000000FE000000FE000000FE0000
00FE000000FE00FFFFFFF8FFFFFFF8FFFFFFF8E0007E0070007E0038007E001C007E000E00
7E000E007E0007007E0003807E0001C07E0000E07E0000E07E0000707E0000387E00001C7E
00000E7E00000E7E0000077E000003FE000001FE000000FE000000FE0000007E0000003E00
00001E0000000E00>
29 39 -2 38 34] 52 @dc
@F5 @sf
[<
FFFFFEFFFFFE0FC07E0FC01E0FC00E0FC0060FC0070FC0070FC0030FC0030FC0030FC0000F
C0000FC0000FC0000FC0000FC0000FC0000FC0000FC0000FC0000FC0000FC0000FC0000FC0
000FC000FFFF00FFFF00>
24 28 -2 27 29] 76 @dc
29 @eop0
0 0 29 @bop1 262 307 a @F1 @sf(4)69 b(Inciden)n(t)22 b(Handling)-645 91 y
@F9 @sf(The)16 b(di\016cult)o(y)f(of)h(handling)f(an)h(inciden)o(t)g(is)g
(determined)h(b)o(y)f(sev)o(eral)h(factors.)25 b(These)-1430 50 y(include)
18 b(the)i(lev)o(el)e(of)g(preparation,)i(the)f(sensitivit)o(y)f(of)g(the)i
(data,)f(and)f(the)i(relativ)o(e)-1432 50 y(exp)q(ertise)e(lev)o(els)e(of)g
(the)h(attac)o(k)o(er\(s\))g(and)f(the)h(defender\(s)q(\).)26 b(Hop)q
(efully)m(,)16 b(preliminary)-1433 50 y(w)o(ork)i(in)g(terms)i(of)e
(gathering)h(to)q(ols,)g(ha)o(ving)f(noti\014cation)g(lists,)h(p)q
(olicies)g(and)g(most)-1432 49 y(imp)q(ortan)o(tly)12 b(bac)o(kup)i(tap)q
(es,)g(will)f(mak)o(e)g(the)i(actual)e(handling)g(m)o(uc)o(h)h(easier.)-1209
50 y(This)g(section)g(is)g(divided)f(in)o(to)g(three)i(parts.)k(The)14 b
(\014rst)h(of)e(these)i(deal)f(with)f(general)-1431 50 y(principles.)22 b
(The)16 b(second)h(presen)o(ts)g(some)e(particular)h(\(simple\))f(tec)o
(hniques)h(that)g(ha)o(v)o(e)-1432 50 y(pro)o(v)o(en)e(useful)h(in)f(the)i
(past.)21 b(Finally)o -3 x(,)13 b(the)i(third)g(section)g(presen)o(ts)q
16 x(a)f(descr)q(iption)h(of)f(a)-1432 50 y(sim)o(ulati)o(on)f(exercise)i
(based)g(a)e(set)i(of)e(real)h(attac)o(ks.)-839 116 y @F2 @sf(4.1)55 b
(Basic)18 b(Hin)n(ts)-408 76 y @F9 @sf(There)g(are)f(a)g(n)o(um)o(b)q(er)g
(of)f(basic)i(issues)g(to)f(understand)h(when)f(handling)f(a)h(computer)
-1431 50 y(inciden)o(t.)j(Most)15 b(of)f(these)i(issues)g(are)f(presen)o
(t)h(in)f(handling)e(most)i(of)f(these)i(issues)g(and)-1432 50 y(tec)o
(hniques)f(are)f(relev)n(an)o(t)g(in)f(a)h(wide)g(v)n(ariet)o(y)f(of)g(un)o
(usual)h(and)g(emergency)h(situations.)-1420 108 y @F5 @sf(4.1.1)47 b(P)o
(anic)16 b(Lev)o(el)-387 77 y @F9 @sf(It)i(is)h(critical)f(to)g(determine)i
(ho)o(w)e(m)o(uc)o(h)g(panic)h(is)f(appropriate.)32 b(In)19 b(man)o(y)e
(cases,)k(a)-1432 49 y(problem)13 b(is)h(not)f(noticed)i(un)o(til)d(w)o
(ell)i(after)g(it)f(has)h(o)q(ccurred)i(and)d(another)h(hour)g(or)g(da)o
(y)-1432 50 y(will)e(not)i(mak)o(e)f(a)h(di\013erence.)-477 108 y @F5 @sf
(4.1.2)47 b(Call)17 b(Logs)f(and)f(Time)h(Lines)-683 77 y @F9 @sf(All)g
(\(or)i(almost)f(all\))f(bad)i(situations)f(ev)o(en)o(tually)g(come)h(to)f
(an)h(end.)29 b(A)o(t)18 b(that)g(p)q(oin)o(t,)-1433 50 y(and)12 b(p)q
(erhaps)i(at)f(earlier)g(p)q(oin)o(ts,)f(a)h(list)f(of)g(actions)h(and)g
(esp)q(ecially)g(comm)o(unications)f(is)-1432 49 y(needed)j(to)f(\014gure)g
(out)g(what)g(happ)q(ened.)-667 108 y @F5 @sf(4.1.3)47 b(Accoun)o(tabilit)o
(y)15 b(and)g(Authorit)n(y)-766 77 y @F9 @sf(During)i(an)h(inciden)o(t)g
(it)f(is)h(imp)q(ortan)o(t)f(to)h(remind)g(p)q(eople)g(what)g(decisions)h
(they)f(are)-1431 50 y(emp)q(o)o(w)o(ered)c(to)g(mak)o(e)g(and)f(what)h(t)o
(yp)q(es)h(of)e(decisions)i(that)f(they)g(are)h(not.)j(Ev)o(en)c(when)-1431
49 y(this)f(is)h(explicitly)e(discussed)j(and)f(form)o(ulated)f(in)g(a)g
(con)o(tingency)h(plan,)e(p)q(eople)i(ha)o(v)o(e)g(a)-1432 50 y(tendency)j
(to)f(exceed)i(their)f(authorities)f(when)g(they)h(are)g(con)o(vinced)f
(that)g(they)h(kno)o(w)-1432 50 y(what)c @F6 @sf(should)19 b @F9 @sf(b)q
(e)14 b(done.)-388 108 y @F5 @sf(4.1.4)47 b(Audit)15 b(Logs)-378 77 y
@F9 @sf(Audit)g(logs)g(need)h(to)f(b)q(e)h(copied)g(to)g(a)f(safe)g(place)h
(as)g(quic)o(kly)e(as)i(p)q(ossible.)23 b(It)15 b(is)h(often)-1432 49 y
(the)c(case)h(that)g(an)f(attac)o(k)o(er)g(returns)i(to)e(a)g(computer)h
(to)f(destro)o(y)g(evidence)i(that)e(he)h(had)-1432 50 y(previously)g
(forgotten)h(ab)q(out.)-494 108 y @F5 @sf(4.1.5)47 b(Timestamps)-400 77 y
@F9 @sf(The)18 b(second)h(most)e(p)q(o)o(w)o(erful)h(to)q(ol)f(\(second)i
(only)e(to)h(bac)o(kup)g(tap)q(es\))g(in)g(an)f(inciden)o(t)-1431 50 y
(handlers)g(arsenal)g(is)g(timestamps.)28 b(When)17 b(in)f(doubt)h(as)h
(to)e(what)h(to)g(do,)g(try)h(to)f(un-)-1432 49 y(derstand)d(the)g
(sequencing)g(of)e(the)i(ev)o(en)o(ts.)19 b(This)13 b(is)g(esp)q(ec)q
(ially)f(true)i(when)g(some)f(of)g(the)-1431 50 y(actions)g(will)g(c)o
(hange)h(the)h(v)n(alue)e(on)g(the)i(system)g(clo)q(c)o(k.)-210 131 y(29)
-999 b
29 @eop1
28 @bop0
/@F7 @newfont
@F7 @sf
[<
03C00FF01FF83FFC7FFE7FFEFFFFFFFFFFFFFFFF7FFE7FFE3FFC1FF80FF003C0>
16 16 -2 17 21] 15 @dc
@F9 @sf
[<
C000C0006000600060003000300030001800180018000C000C000C00060006000300030003
0001800180018000C000C000C000600060003000300030001800180018000C000C000C0006
0006000600030001>
16 41 -2 30 21] 47 @dc
28 @eop0
0 0 28 @bop1 324 307 a @F7 @sf(\017)20 b @F9 @sf(A)14 b(user)h(rep)q(orts)h
(that)d(the)i(last)f(login)e(time/place)i(on)f(his)h(accoun)o(t)g(aren't)g
(his.)-1283 67 y(Tw)o(o)f(w)o(eeks)i(later)e(y)o(ou)g(\014nd)g(that)h(y)o
(our)f(username)h(space)h(isn't)e(unique)g(and)h(that)-1329 49 y(unauthen)o
(ticated)20 b(logins)d(are)i(allo)o(w)o(ed)e(b)q(et)o(w)o(een)j(mac)o
(hines)f(based)g(en)o(tirely)g(on)-1329 50 y(username.)-223 83 y @F7 @sf
(\017)h @F9 @sf(A)c(guest)h(accoun)o(t)f(is)g(suddenly)g(using)g(four)f
(CPU)h(hours)g(p)q(er)h(da)o(y)e(when)i(b)q(efore)-1328 50 y(it)d(had)g
(just)g(b)q(een)h(used)f(for)g(mail)e(reading.)-699 66 y(Y)m(ou)g(\014nd)h
(that)g(the)g(extra)g(CPU)g(time)g(has)g(b)q(een)g(going)f(in)o(to)g
(passw)o(ord)h(crac)o(king.)-1329 67 y(Y)m(ou)h(\014nd)g(that)g(the)g
(passw)o(ord)g(\014le)g(isn't)g(one)g(from)f(y)o(our)h(cen)o(ter.)-1058
66 y(Y)m(ou)g(determine)g(whic)o(h)g(cen)o(ter)i(it)d(is)h(from.)-743 83 y
@F7 @sf(\017)20 b @F9 @sf(Y)m(ou)14 b(hear)g(rep)q(orts)h(of)f(computer)g
(virus)g(that)g(pain)o(ts)g(trains)g(on)f(CR)m(T's.)-1172 67 y(Y)m(ou)e
(login)e(to)i(a)g(mac)o(hine)f(at)h(y)o(our)g(cen)o(ter)i(and)d(\014nd)h
(suc)o(h)h(a)f(train)g(on)f(y)o(our)h(scree)q(n.)-1328 66 y(Y)m(ou)j(lo)q
(ok)f(in)g(the)h(log)f(and)h(\014nd)g(not)g(notation)f(of)g(suc)o(h)i(a)e
(feature)i(b)q(eing)f(added.)-1313 67 y(Y)m(ou)j(notice)g(that)g(\014v)o
(e)g(attempts)g(w)o(ere)h(made)f(to)f(install)g(it)h(within)f(an)g(hour)h
(of)-1329 49 y(eac)o(h)e(b)q(efore)f(the)h(curren)o(t)g(one.)-508 67 y
(Three)h(da)o(ys)f(later)f(y)o(ou)g(learn)h(that)g(it)f(w)o(as)h(put)f(up)h
(b)o(y)g(a)f(system)h(administrator)-1329 50 y(lo)q(cally)c(who)i(had)f
(heard)h(nothing)f(ab)q(out)h(the)g(virus)g(scare)h(or)e(ab)q(out)h(y)o
(our)f(asking)-1329 49 y(ab)q(out)i(it.)-200 83 y @F7 @sf(\017)20 b @F9 @sf
(Y)m(ou)14 b(notice)g(that)g(y)o(our)f(mac)o(hine)h(has)g(b)q(een)h(brok)o
(en)f(in)o(to.)-946 67 y(Y)m(ou)g(\014nd)g(that)g(nothing)f(is)h(damaged.)
-627 66 y(A)g(high)g(sc)o(ho)q(ol)f(studen)o(t)i(calls)f(up)g(and)f(ap)q
(ologizes)h(for)f(doing)g(it.)-1099 83 y @F7 @sf(\017)20 b @F9 @sf(An)f
(en)o(tire)g(disk)f(partition)g(of)g(data)g(is)h(deleted.)33 b(Mail)17 b
(is)h(b)q(ouncing)h(b)q(ouncing)-1329 50 y(b)q(ecause)q 15 x(the)14 b
(mail)f(utilities)g(w)o(as)h(on)f(that)h(partition.)-867 67 y(When)e(y)o
(ou)f(restore)i(the)g(partition,)d(y)o(ou)i(\014nd)f(that)h(a)f(n)o(um)o
(b)q(er)h(of)f(system)i(binaries)-1329 49 y(ha)o(v)o(e)j(b)q(een)i(c)o
(hanged.)25 b(Y)m(ou)16 b(also)f(notice)i(that)f(the)h(system)g(date)f(is)g
(wrong.)25 b(O\013)-1328 50 y(b)o(y)14 b(1900)f(y)o(ears.)-300 83 y @F7 @sf
(\017)20 b @F9 @sf(A)14 b(rep)q(orter)q 15 x(calls)f(up)h(asking)g(ab)q
(out)f(the)i(breakin)f(at)f(y)o(our)h(cen)o(ter.)20 b(Y)m(ou)13 b(ha)o(v)o
(en't)-1329 50 y(heard)i(of)e(an)o(y)g(suc)o(h)i(breakin.)-482 66 y(Three)h
(da)o(ys)e(later)h(y)o(ou)f(learn)h(that)f(there)i(w)o(as)e(a)h(breakin.)
20 b(The)15 b(cen)o(ter)h(director)-1328 50 y(had)e(his)g(wife's)f(name)h
(as)g(a)f(passw)o(ord.)-674 83 y @F7 @sf(\017)20 b @F9 @sf(A)14 b(c)o
(hange)g(in)g(system)h(binaries)e(is)h(detecte)q(d.)-728 67 y(The)h(da)o
(y)e(that)h(it)f(is)h(correcte)q(d)h(they)g(again)d(are)j(c)o(hanged.)-949
66 y(This)f(rep)q(eats)i(itself)d(for)h(some)g(w)o(eeks.)-31 507 y(28)-999 b
28 @eop1
27 @bop0
@F9 @sf
[<
0300078007800300000000000000000000000100010001000100010001000180008000C000
600030001C000CF00EF00EF00EE00E401C30380FE0>
15 29 -2 28 20] 63 @dc
@F2 @sf
[<
0000E0000E00000000E0000E00000000F0001E00000001F0001F00000001F0001F00000003
F8003F80000003F8003F80000003FC007F80000007FC007FC0000007FC007FC000000FF600
FFE000000FE600FE6000000FE600FE6000001FE301FC3000001FC301FC3000001FC383FC30
00003F8183F81800003F8183F81800007F80C7F81C00007F00C7F00C00007F00C7F00C0000
FF006FE0060000FE006FE0060000FE007FE0060001FC003FC0030001FC003FC0030003FC00
3F80038003F8003F80018003F8007F80018007F0007F0000C007F0007F0000C00FF000FF00
00E0FFFF0FFFF01FFEFFFF0FFFF01FFE>
55 34 -1 33 58] 87 @dc
27 @eop0
0 0 27 @bop1 262 307 a @F5 @sf(List)15 b(Logistics.)20 b @F9 @sf(Ho)o(w)
14 b(often)g(to)f(y)o(ou)h(up)q(date)g(the)h(inciden)o(t)f(plan?)-1003 67 y
(Ho)o(w)g(do)q(es)g(y)o(ou)g(system)h(sta\013)f(learn)g(ab)q(out)g(it?)-870
116 y @F2 @sf(3.4)55 b(T)-5 b(o)r(ols)18 b(to)h(ha)n(v)n(e)g(on)g(hand)-671
76 y @F9 @sf(File)13 b(Di\013erencing)h(T)m(o)q(ols)-349 50 y(Net)o(w)o
(atc)o(her)-204 50 y(Sp)o(ying)f(to)q(ols)-223 50 y(Bac)o(kup)h(T)m(ap)q
(es)-255 50 y(Blanks)g(T)m(ap)q(es)-243 49 y(Noteb)q(o)q(oks)-253 117 y
@F2 @sf(3.5)55 b(Sample)18 b(Scenarios)g(to)h(W)-5 b(ork)18 b(on)h(in)f
(Groups)-1113 76 y @F9 @sf(In)f(order)g(to)g(understand)i(what)e(goal)e
(priorities)i(y)o(ou)g(ha)o(v)o(e)g(for)g(y)o(ou)f(cen)o(ter)j(and)e(as)g
(a)-1432 50 y(general)11 b(exercise)q 13 x(in)g(planning,)f(let)i(us)g
(consider)g(a)g(n)o(um)o(b)q(er)g(of)f(sample)g(problems.)17 b(Eac)o(h)-1431
50 y(of)11 b(these)j(is)f(a)f(simpli\014ed)g(v)o(ersion)h(of)f(a)g(real)g
(inciden)o(t.)18 b(What)12 b(w)o(ould)g(b)q(e)h(appropriate)g(to)-1432 50 y
(do)h(if)f(a)h(similar)f(thing)h(happ)q(enned)h(at)g(y)o(our)f(cen)o(ter?)
21 b(Eac)o(h)14 b(new)h(paragraph)f(indicates)-1431 50 y(new)g(informatio)o
(n)f(that)h(is)f(rece)q(iv)o(ed)i(later.)-634 91 y @F7 @sf(\017)20 b @F9 @sf
(A)11 b(system)g(programmer)f(notices)h(that)f(at)g(midnigh)o(t)f(eac)o(h)i
(nigh)o(t,)f(someone)h(mak)o(es)-1329 50 y(25)j(attempts)g(to)g(guess)h(a)e
(username{passw)o(ord)i(com)o(bination)-1020 66 y(Tw)o(o)k(w)o(eeks)i
(later,)g(he)f(rep)q(orts)h(that)e(eac)o(h)h(nigh)o(t)f(it)h(is)f(the)h
(same)g(username{)-1328 50 y(passw)o(ord)15 b(com)o(bination.)o -456 83 a
@F7 @sf(\017)20 b @F9 @sf(A)g(system)g(programmer)f(gets)h(a)g(call)e(rep)q
(orting)i(that)g(a)f(ma)r(jor)g(underground)-1328 50 y(crac)o(k)o(er)g
(newsletter)g(is)e(b)q(eing)h(distributed)g(from)f(the)h(administrativ)o
(e)e(mac)o(hine)-1329 50 y(at)e(his)g(cen)o(ter)h(to)f(\014v)o(e)g
(thousand)g(sites)h(in)e(the)i(US)f(and)g(W)m(estern)g(Europ)q(e.)-1211
66 y(Eigh)o(t)j(w)o(eeks)i(later,)f(the)g(authorities)g(call)e(to)i
(inform)e(y)o(ou)h(the)h(information)e(in)-1329 50 y(one)e(of)e(these)j
(newsletters)q 15 x(w)o(as)e(used)h(to)f(disable)g(\\911")f(in)h(a)g(ma)r
(jor)f(cit)o(y)h(for)g(\014v)o(e)-1328 50 y(hours.)-152 83 y @F7 @sf(\017)
20 b @F9 @sf(A)11 b(user)h(calls)e(in)g(to)h(rep)q(ort)g(that)g(he)g
(can't)g(login)e(to)h(his)h(accoun)o(t)g(at)f(3)h(in)f(the)h(morn-)-1329
49 y(ing)j(on)g(a)g(Saturda)o(y)m(.)19 b(The)c(system)g(sta\013er)g(can't)f
(login)f(either.)21 b(After)15 b(reb)q(o)q(oting)-1329 50 y(to)f(single)g
(user)h(mo)q(de,)e(he)h(\014nds)h(that)f(passw)o(ord)g(\014le)g(is)g(empt)o
(y)m(.)-1033 67 y(By)k(Monda)o(y)e(morning,)g(y)o(our)h(sta\013)g
(determines)i(that)e(a)f(n)o(um)o(b)q(er)i(of)e(privileged)-1329 49 y(\014le)e
(transfer)h(to)q(ok)f(place)g(b)q(et)o(w)o(een)h(this)f(mac)o(hine)f(and)h
(a)g(lo)q(cal)f(univ)o(ersit)o(y)m(.)-1226 67 y(T)m(uesda)o(y)h(morning)f
(a)h(cop)o(y)g(of)g(the)h(deleted)g(passw)o(ord)g(\014le)f(is)g(found)f
(on)h(the)h(uni-)-1329 50 y(v)o(ersit)o(y)f(mac)o(hine)g(along)f(with)g
(passw)o(ord)i(\014les)f(for)f(a)h(dozen)h(other)f(mac)o(hines.)-1266 66 y
(A)e(w)o(eek)g(later)g(y)o(ou)f(\014nd)h(that)f(y)o(our)h(system)g
(initiali)o(zation)e(\014les)i(had)f(b)q(een)i(altered)-1328 50 y(in)h(a)f
(hostile)h(fashion.)-397 83 y @F7 @sf(\017)20 b @F9 @sf(Y)m(ou)13 b(rece)q
(iv)o(e)h(a)g(call)f(sa)o(ying)g(that)g(breakin)h(to)g(a)f(go)o(v)o
(ernmen)o(t)h(lab)f(o)q(ccurred)i(from)-1329 50 y(one)i(of)f(y)o(our)g
(cen)o(ter's)i(mac)o(hines.)25 b(Y)m(ou)16 b(are)h(requested)h(to)f(pro)o
(vide)f(accoun)o(ting)-1329 50 y(\014les)f(to)e(help)h(trac)o(kdo)o(wn)g
(the)h(attac)o(k)o(er.)-656 66 y(A)g(w)o(eek)g(later)f(y)o(ou)g(are)h(giv)o
(en)f(a)g(list)g(of)f(mac)o(hines)i(at)f(y)o(our)g(site)h(that)f(ha)o(v)o
(e)g(b)q(een)-1327 50 y(brok)o(en)g(in)o(to.)373 146 y(27)-999 b
27 @eop1
26 @bop0
@F9 @sf
[<
60F0F060000000000060606060606060606060606060F0F0F0F0F0F0F060>
4 30 -4 29 12] 33 @dc
@F2 @sf
[<
FFFFE000FFFFE00007F0000007F0000007F0000007F0000007F0000007F0000007F0000007
F0000007F0180007F0180007F0180007F0180007F0380007F0780007FFF80007FFF80007F0
780007F0380007F0180007F0180007F0180C07F0180C07F0000C07F0000C07F0001C07F000
1C07F0001807F0003807F0007807F001F8FFFFFFF8FFFFFFF8>
30 34 -2 33 35] 70 @dc
@F5 @sf
[<
FFFFFE>
23 1 0 11 24] 123 @dc
@F5 @sf
[<
FFFFFFFF07E007E007E007E007E007E007E007E007E007E007E007E007E007E007E007E007
E007E007E007E007E007E007E007E0FFFFFFFF>
16 28 -1 27 18] 73 @dc
[<
000FF800007FFE0000FC078001F001C003E000E007C0006007C000300FC000300FC000300F
C000300FC000300FC000300FC000300FC000300FC000300FC000300FC000300FC000300FC0
00300FC000300FC000300FC000300FC000300FC000300FC000300FC00030FFFC03FFFFFC03
FF>
32 28 -2 27 37] 85 @dc
26 @eop0
0 0 26 @bop1 324 307 a @F7 @sf(\017)20 b @F9 @sf(Long)14 b(cycles.)20 b
(It)14 b(ma)o(y)f(tak)o(e)h(w)o(eeks)h(or)f(mon)o(ths)g(to)g(notice)h(a)e
(mistak)o(e.)19 b(A)14 b(system)-1328 50 y(that)g(reuses)q 15 x(the)g
(same)g(tap)q(e)g(ev)o(ery)h(w)o(eek)f(will)f(ha)o(v)o(e)g(destro)o(y)o
(ed)i(the)f(data)g(b)q(efore)-1328 50 y(the)h(error)g(is)e(noticed.)-399
82 y @F7 @sf(\017)20 b @F9 @sf(Separate)e(tap)q(es.)27 b(Ov)o(erwriting)
17 b(the)g(existing)g(bac)o(kup)g(b)q(efore)g(ha)o(ving)f(the)h(new)-1328
50 y(one)d(completed)h(is)e(an)h(acciden)o(t)h(w)o(aiting)d(to)i(happ)q
(en.)-919 82 y @F7 @sf(\017)20 b @F9 @sf(V)m(eri\014ed)13 b(bac)o(kups.)
18 b(It)12 b(is)h(necessary)h(to)e(mak)o(e)g(sure)h(that)g(one)f(can)h
(read)g(the)g(tap)q(es)-1328 49 y(bac)o(k)k(in.)27 b(One)17 b(site)h(with)e
(a)h(programming)e(bug)i(in)f(its)h(bac)o(k)g(up)g(utilit)o(y)e(had)i(a)
-1329 50 y(store)e(ro)q(om)e(\014lled)h(with)f(unreadable)i(tap)q(es!)-828
116 y @F2 @sf(3.3)55 b(F)-5 b(orming)19 b(a)g(Plan)-507 77 y @F9 @sf
(While)13 b(the)i(\014rst)h(ma)r(jor)d(section)j(\(a)o(v)o(oidance\))e
(con)o(tained)g(a)g(lot)g(of)g(standard)h(solutions)-1432 49 y(to)e
(standard)h(problems,)f(planning)f(requires)j(a)e(great)h(deal)f(more)h
(though)o(t)f(and)h(consid-)-1432 50 y(eration.)j(A)d(great)h(deal)e(of)h
(this)f(is)h(list)g(making.)o -780 89 a @F5 @sf(Calls)i(Lists.)21 b @F9 @sf
(If)16 b(there)j(a)e(system)h(sta\013er)g(susp)q(ects)q 18 x(securit)o(y)g
(inciden)o(t)g(is)f(happ)q(ening)-1329 50 y(righ)o(t)d(no)o(w,)f(who)g(he)i
(should)e(call?)-556 66 y(And)h(if)f(he)i(gets)f(no)g(answ)o(er)h(on)e
(that)h(line?)-698 66 y(What)h(if)f(the)i(p)q(eople)f(are)h(the)f(call)g
(list)f(are)i(no)f(longer)f(emplo)o(y)o(ees)i(or)f(ha)o(v)o(e)g(long)-1330
50 y(since)g(died?)-198 66 y(What)f(if)f(it)g(Christmas)h(Da)o(y)f(or)h
(Sunda)o(y)g(morning?)-955 82 y @F5 @sf(Time{Distance.)20 b @F9 @sf(Ho)o
(w)11 b(long)g(will)g(it)g(tak)o(e)i(for)e(the)i(p)q(eople)f(who)g(are)g
(called)g(to)g(arriv)o(e?)-1329 65 y(What)i(should)f(b)q(e)i(done)f(un)o
(til)f(they)h(get)h(there?)-879 82 y @F5 @sf(This)g(a)h(user)f(notices.)
20 b @F9 @sf(If)14 b(a)f(user)i(notices)g(something)f(o)q(dd,)f(who)h
(should)f(he)i(tell?)-1272 66 y(Ho)o(w)f(do)q(es)g(he)h(kno)o(w)e(this?)
-542 82 y @F5 @sf(Threats)h(and)h(Tips.)21 b @F9 @sf(What)13 b(should)h(y)o
(our)f(sta\013ers)i(do)e(if)f(they)i(rece)q(iv)o(e)g(a)f(threat)h(or)g(a)
-1329 50 y(tip-o\013)g(ab)q(out)f(a)h(breakin?)-535 82 y @F5 @sf(Press.)
19 b @F9 @sf(What)13 b(should)h(a)f(system)h(sta\013er)h(do)e(when)h(he)g
(receiv)o(es)h(a)f(call)e(from)h(the)h(press)-1327 50 y(asking)g(ab)q(out)f
(an)h(inciden)o(t)g(that)g(he,)g(himself)f(do)q(esn't)h(kno)o(w)g(ab)q
(out?)-1140 66 y(What)g(ab)q(out)g(when)g(there)h(is)f(a)f(real)h(inciden)o
(t)g(underw)o(a)o(y?)-1062 82 y @F5 @sf(Sh)o(u)o(tt)o(ing)g(Do)o(wn.)21 b
@F9 @sf(Under)12 b(what)f(circumstances)q 13 x(should)g(the)h(cen)o(ter)h
(b)q(e)f(sh)o(utdo)o(wn)g(or)-1329 50 y(remo)o(v)o(ed)i(from)f(the)i(net?)
-412 66 y(Who)f(can)g(mak)o(e)f(this)h(decision?)-529 66 y(When)g(should)g
(service)h(b)q(e)g(restored?)-712 82 y @F5 @sf(Prosecut)o(ion.)k @F9 @sf
(Under)c(what)f(circumstances)i(do)d(y)o(ou)h(plan)f(to)h(prosecute?)-1244
82 y @F5 @sf(Timestamps.)19 b @F9 @sf(Ho)o(w)14 b(can)g(y)o(ou)f(tell)h
(that)g(the)g(timestamps)g(ha)o(v)o(e)g(b)q(een)h(altered?)-1226 66 y
(What)f(should)f(y)o(ou)h(do)f(ab)q(out)h(it?)-551 66 y(W)m(ould)f
(running)g(NTP)i(\(the)f(net)o(w)o(ork)g(time)g(proto)q(cal\))g(help?)-1108
82 y @F5 @sf(Informin)o(g)h(the)f(Users.)20 b @F9 @sf(What)14 b(do)g(y)o
(ou)f(tell)g(the)i(users)g(ab)q(out)f(all)f(this?)-523 124 y(26)-999 b
26 @eop1
25 @bop0
@F5 @sf
[<
C00000E00000E000007000007000007000003800003800001C00001C00001C00000E00000E
00000E000007000007000003800003800003800001C00001C00001C00000E00000E00000E0
00007000007000003800003800003800001C00001C00001C00000E00000E00000700000700
000700000380000380000180>
17 41 -3 30 24] 47 @dc
@F5 @sf
[<
FFFFFC00FFFFFF000FC01FC00FC007E00FC007E00FC003F00FC003F00FC003F00FC003F00F
C003F00FC003E00FC007E00FC007C00FC00F800FFFFE000FC03F000FC00F800FC007C00FC0
07E00FC007E00FC007E00FC007E00FC007E00FC007C00FC00FC00FC01F80FFFFFF00FFFFF8
00>
28 28 -2 27 34] 66 @dc
[<
000700038000000700038000000F0003C000000F8007C000000F8007C000001FC00FE00000
1FC00FE000003FC00FF000003FE01FF000003F601FB000007F601FB800007E303F1800007E
303F180000FC387F0C0000FC187E0C0001FC187E0E0001F81CFE060001F80CFC060003F80C
FC070003F007F8030003F007F8030007E007F8018007E003F001800FE003F001C00FC007F0
00C00FC007E000C0FFFC7FFE0FFCFFFC7FFE0FFC>
46 28 -1 27 49] 87 @dc
25 @eop0
0 0 25 @bop1 365 307 a @F9 @sf(There)19 b(ha)o(v)o(e)e(b)q(een)h(cases)g
(where)h(bac)o(k)e(up)g(systems)i(returned)f(data)f(\014les)h(to)f(b)q(e)
-1328 50 y(publically)d(writeable)i(and)f(ob)o(vious)f(problems)i(ha)o(v)o
(e)f(ensued)i(from)d(it.)23 b(P)o(erhaps)-1328 50 y(as)18 b(seriously)m(,)h
(there)g(are)f(sites)h(that)f(ha)o(v)o(e)g(stored)h(all)d(of)i(the)g(bac)o
(k)g(up)g(data)g(in)-1329 50 y(a)d(publically)e(readable)j(form,)e
(including)f(the)j(data)f(that)g(w)o(as)g(protected)h(b)o(y)f(the)-1328
49 y(individual)d(user.)-383 78 y @F5 @sf(System)i(Sta\013)h(Errors.)20 b
@F9 @sf(Just)14 b(as)g(users)g(mak)o(e)f(mistak)o(es,)g(sta\013)h(mem)o(b)q
(ers)f(do)g(as)h(w)o(ell.)-1330 49 y(In)e(doing)f(so,)g(they)i(ma)o(y)d
(damage)h(user)i(\014les,)f(system)h(\014les)f(or)f(b)q(oth.)18 b(Unless)
12 b(there)-1327 50 y(is)19 b(a)f(cop)o(y)h(of)e(the)j(curren)o(t)g
(system)f(\014les,)h(the)f(sta\013)g(m)o(ust)f(restore)q 20 x(the)h
(system)-1328 50 y(\014les)c(from)e(the)h(original)e(distribution)h(and)h
(then)h(rebuild)e(all)g(of)g(the)i(site)f(sp)q(eci\014c)-1327 50 y(c)o
(hanges.)19 b(This)12 b(is)g(an)h(error)g(prone)g(pro)q(cess)q 14 x(and)f
(often)h(the)g(site)g(sp)q(eci\014c)h(c)o(hanges)-1328 50 y(including)h
(remo)o(ving)h(un)o(w)o(an)o(ted)g(debugging)f(features)i(that)f(p)q(ose)h
(securit)o(y)g(vul-)-1329 50 y(nerabilities.)-314 77 y @F5 @sf(Hardw)o
(are/Sof)o(t)o(w)o(are)d(F)l(ailures.)21 b @F9 @sf(Hardw)o(are)11 b(o)q
(ccassionally)f(fails.)16 b(If)11 b(the)g(only)g(cop)o(y)-1329 50 y(of)16 b
(the)g(data)g(is)g(on)g(a)g(disk)g(that)g(has)g(b)q(ecome)h(unreadable)g
(it)e(is)h(lost.)25 b(Soft)o(w)o(are)-1329 49 y(o)q(ccasionally)16 b
(fails.)25 b(Giv)o(en)16 b(a)g(serious)i(enough)f(error,)g(it)g(can)g(mak)o
(e)f(a)g(disk)h(un-)-1329 50 y(readable.)-267 77 y @F5 @sf(Securit)n(y)e
(Inciden)o(ts)o(.)20 b @F9 @sf(In)12 b(this)g(do)q(cumen)o(t,)h(our)f
(main)f(concern)j(is)e(with)g(securit)o(y)h(inci-)-1329 50 y(den)o(ts.)21 b
(In)14 b(determining)h(what)f(happ)q(en)h(and)f(correcting)i(it,)d(bac)o
(kups)i(are)g(essen-)-1327 50 y(tial.)-73 64 y(Basically)m(,)9 b(one)i(w)o
(ould)e(lik)o(e)h(to)g(return)h(ev)o(ery)g(\014le)f(to)g(the)h(state)g(b)q
(efore)g(the)f(inciden)o(t)-1328 49 y(except)18 b(for)d(those)i(that)f
(are)g(b)q(eing)g(mo)q(di\014ed)g(to)g(prev)o(en)o(t)g(future)h(inciden)o
(ts.)25 b(Of)-1329 50 y(course,)17 b(to)e(do)h(this,)f(one)h(needs)h(a)e
(cop)o(y)g(to)h(restore)h(from.)22 b(Naiv)o(ely)m(,)o 15 x(one)15 b(w)o
(ould)-1329 50 y(think)f(that)h(using)f(that)h(mo)q(di\014cation)e(date)i
(w)o(ould)f(allo)o(w)e(us)j(to)g(tell)f(whic)o(h)g(\014les)-1328 50 y
(need)g(to)f(b)q(e)h(up)q(dated.)19 b(This)13 b(is)g(of)f(course)j(not)e
(the)h(case.)k(The)c(clev)o(er)g(attac)o(k)f(will)-1330 50 y(mo)q(dify)g
(the)h(system)h(clo)q(c)o(k)f(and/or)f(the)i(timestamps)f(on)f(\014les)i
(to)e(prev)o(en)o(t)i(this.)-1305 63 y(In)f(man)o(y)f(attac)o(ks,)h(at)g
(one)g(the)g(follo)o(wi)o(ng)f(t)o(yp)q(es)h(of)g(\014les)g(are)g(mo)q
(di\014ed.)-1121 83 y @F7 @sf(\017)21 b @F9 @sf(The)14 b(system)h(binary)e
(that)h(con)o(trols)g(logging)e(in.)-831 60 y @F7 @sf(\017)21 b @F9 @sf
(The)14 b(system)h(authorization)e(\014le)h(lists)f(the)i(users)g(and)f
(their)g(privileges.)-1211 61 y @F7 @sf(\017)21 b @F9 @sf(The)14 b(system)h
(binary)e(that)h(con)o(trols)g(one)g(or)g(more)g(daemons.)-1041 61 y @F7 @sf
(\017)21 b @F9 @sf(The)14 b(accoun)o(ting)g(and)f(auditing)g(\014les.)-661
60 y @F7 @sf(\017)21 b @F9 @sf(User's)15 b(startup)f(\014les)g(and)g(p)q
(ermission)g(\014les.)-763 61 y @F7 @sf(\017)21 b @F9 @sf(The)14 b(system)h
(directory)f(w)o(alking)e(binary)m(.)-810 82 y(No)o(w)h(that)h(w)o(e)g
(understand)i(wh)o(y)d(w)o(e)h(need)h(bac)o(k)f(ups)g(in)g(order)g(to)g
(reco)o(v)o(er)-1278 106 y @F5 @sf(3.2.2)47 b(Ho)o(w)17 b(to)e(form)g(a)h
(Bac)o(k)g(Up)f(Strategy)g(that)f(W)l(orks)-1093 76 y @F9 @sf(There)h(are)f
(a)f(few)h(basic)g(rules)h(that)f(pro)o(vide)g(for)f(a)h(go)q(o)q(d)f(bac)o
(kup)h(strategy)m(.)-1175 77 y @F7 @sf(\017)20 b @F9 @sf(Ev)o(ery)15 b
(\014le)f(that)g(one)g(cares)h(ab)q(out)f(m)o(ust)f(b)q(e)i(included.)-940
77 y @F7 @sf(\017)20 b @F9 @sf(The)15 b(copies)f(m)o(ust)g(b)q(e)g(in)f
(non-v)o(olitil)o(e)g(form.)k(While)c(ha)o(ving)g(t)o(w)o(o)g(copies)i(of)e
(eac)o(h)-1328 50 y(\014le,)k(one)g(on)f(eac)o(h)i(of)e(t)o(w)o(o)g
(separate)i(disk)e(driv)o(es)h(is)g(go)q(o)q(d)f(for)g(protection)h(from)
-1329 50 y(simple)11 b(hardw)o(are)h(failures,)f(it)g(is)h(not)f(defense)i
(from)e(an)g(in)o(telligen)o(t)f(attac)o(k)o(er)j(that)-1329 50 y(will)f
(mo)q(dify)f(b)q(oth)i(copies,)g(of)f(from)g(a)h(clev)o(er)g(system)h
(sta\013er)g(who)e(sa)o(v)o(es)h(time)g(b)o(y)-1329 50 y(mo)q(difying)f
(them)i(b)q(oth)g(at)g(once.)50 124 y(25)-999 b
25 @eop1
24 @bop0
@F5 @sf
[<
03F80007FE001E0F003C07803C03C07803C07803E07803E0F803E0F803E0F803E0F803E0FC
03C0FC0380FA0780FB0E00F8F800F800007800007800003C03803C07C01E07C00F03C00781
8003FF00007E00>
19 27 -2 26 24] 54 @dc
@F5 @sf
[<
03800007C00007C00007C00007C00007C00007C00003C00003C00003C00003C00001C00001
E00000E00000E000006000003000003000C01800C00C00C00600E003007FFF807FFF807FFF
C07FFFE07FFFE0600000>
19 28 -3 27 24] 55 @dc
24 @eop0
0 0 24 @bop1 262 307 a @F9 @sf(is)17 b(imp)q(ortan)o(t)f(for)h(the)g
(appropriate)h(p)q(eople)f(within)g(the)g(organization)f(to)h(b)q(e)h
(briefed)-1431 50 y(on)d(the)i(situation.)24 b(It)16 b(is)g(em)o
(barrising)f(to)h(\014nd)g(out)g(ab)q(out)g(an)g(inciden)o(t)g(in)g(one's)g
(o)o(wn)-1432 50 y(organization)c(from)h(a)h(rep)q(orter's)h(phone)g
(call.)-756 108 y @F5 @sf(3.1.6)63 b(Finding)15 b(out)g(who)h(did)f(it)-637
76 y @F9 @sf(This)f(goal)f(is)h(often)g(o)o(v)o(er)g(emphasized.)20 b
(There)c(is)e(de\014nitely)g(a)g(v)n(alue)g(in)g(kno)o(wing)f(who)-1432
50 y(the)k(attac)o(k)o(er)h(w)o(as)f(so)g(that)g(one)h(can)f(debrief)h
(him)e(and)h(discourage)h(him)e(from)g(doing)-1432 50 y(suc)o(h)e(things)g
(in)f(the)i(future.)-397 50 y(In)h(the)h(a)o(v)o(erage)g(case,)h(it)e
(e\013ort)h(to)f(determine)i(the)f(attac)o(k)o(ers)g(iden)o(tit)o(y)f
(than)h(it)f(is)-1432 50 y(w)o(orth)d(unless)i(one)f(plans)g(to)g
(prosecute)h(him.)-743 107 y @F5 @sf(3.1.7)47 b(Punishing)14 b(the)h
(attac)o(k)o(ers)-641 77 y @F9 @sf(This)d(merits)h(of)f(this)h(goal)f(ha)o
(v)o(e)g(b)q(een)i(seriously)f(debated)h(in)e(the)i(past)f(few)f(y)o
(ears.)19 b(As)13 b(a)-1432 50 y(practical)d(matter)h(it)g(is)g(v)o(ery)g
(di\016cult)f(to)h(get)g(enough)g(evidence)h(to)f(prosecute)q(r)h(someone)
-1431 50 y(and)k(v)o(ery)g(few)g(succe)q(sful)h(prosecutions.)26 b(If)16 b
(this)g(is)g(a)g(one)g(of)g(the)h(goals,)e(v)o(ery)h(careful)-1431 50 y
(record)11 b(k)o(eeping)f(needs)h(to)f(b)q(e)h(done)f(at)g(all)f(times)h
(during)g(the)h(in)o(v)o(estigation,)o 10 x(and)f(solving)-1433 49 y(the)h
(problem)h(will)d(b)q(e)j(slo)o(w)o(ed)g(do)o(wn)f(as)g(one)h(w)o(aits)f
(for)g(phone)g(traces)i(and)e(v)n(arious)g(court)-1431 50 y(orders.)-122
116 y @F2 @sf(3.2)55 b(Bac)n(kups)-331 77 y @F9 @sf(It)16 b(should)h(b)q
(e)g(clear)g(that)g(accomplishing)f(most)g(of)g(the)i(goals)e(requires)h
(ha)o(ving)f(extra)-1431 50 y(copies)g(of)f(the)i(data)f(that)g(is)g
(stored)h(on)e(the)i(system.)25 b(These)17 b(extra)g(copies)f(are)h
(called)-1432 50 y(\\Bac)o(kups")d(and)f(generally)h(stored)h(on)e
(magnetic)h(tap)q(e.)-853 49 y(Let)f(us)f(consider)i(t)o(w)o(o)e(asp)q
(ects)i(of)e(k)o(eeping)g(bac)o(kup)h(copies)g(of)e(y)o(our)i(data.)k
(First,)12 b(w)o(e)-1431 50 y(will)f(lo)q(ok)h(at)g(wh)o(y)h(this)f(imp)q
(ortan)o(t)g(and)h(what)g(the)g(bac)o(kups)g(are)g(used)h(for)e(and)h
(then)g(w)o(e)-1431 50 y(will)f(examine)i(the)g(c)o(harateristics)h(of)e
(a)h(go)q(o)q(d)g(bac)o(kup)g(strategy)m(.)-1047 108 y @F5 @sf(3.2.1)47 b
(Wh)o(y)16 b(W)l(e)g(Need)g(Bac)o(k)g(Ups)-669 77 y @F9 @sf(Go)q(o)q(d)c
(bac)o(k)g(ups)h(are)g(needed)i(for)d(four)g(t)o(yp)q(es)i(of)e(reasons.)
18 b(The)c(\014rst)f(three)h(of)e(these)i(are)-1431 49 y(not)g(securit)o
(y)h(related)g(p)q(er)g(se,)f(though)g(an)g(insu\016cein)o(t)h(bac)o(k)f
(up)g(strategy)h(will)e(lead)h(to)-1432 50 y(problems)f(with)h(these)h
(\014rst)g(three)g(as)f(w)o(ell.)-642 50 y(If)h(a)f(site)i(do)q(es)g(not)f
(ha)o(v)o(e)g(a)g(reliable)g(bac)o(k)g(up)g(system,)h(when)f(an)g(inciden)o
(t)h(o)q(ccurs,)-1431 50 y(one)j(m)o(ust)g(seriously)g(consider)h
(immediate)e(sh)o(utdo)o(wn)h(of)g(the)h(system)f(so)h(as)f(not)g(to)-1432
50 y(endanger)14 b(the)h(user)g(data.)-430 91 y @F5 @sf(User)g(Errors.)20 b
@F9 @sf(Ev)o(ery)13 b(once)g(in)f(a)g(while,)f(a)i(user)g(delete)h(a)e
(\014le)g(or)g(o)o(v)o(erwrites)i(data)e(and)-1329 50 y(then)g(realizes)g
(that)g(he)g(needs)g(it)f(bac)o(k.)17 b(In)12 b(some)f(op)q(erating)g
(systems,)i(\\undelete")-1328 50 y(facilities)h(or)h(v)o(ersion)g(n)o(um)o
(b)q(ering)f(is)h(enough)g(to)f(protect)i(him,)e(if)g(he)h(notices)h(his)
-1329 49 y(mistak)o(e)d(quic)o(kly)g(enough.)18 b(Sometimes)13 b(he)h(do)q
(esn't)h(notice)e(the)i(error)f(for)f(a)h(long)-1330 50 y(time,)g(or)g
(deletes)h(all)e(of)h(the)g(v)o(ersions,)h(or)f(expunges)h(them)f(and)g
(then)h(w)o(an)o(ts)f(the)-1328 50 y(data)g(bac)o(k.)-190 66 y(If)j(there)i
(is)e(no)g(bac)o(kup)h(system)g(at)f(all,)g(the)h(users)h(data)e(is)g
(just)g(plain)g(lost.)28 b(If)-1329 50 y(there)19 b(is)e(a)g(p)q(erfect)i
(bac)o(kup)e(system,)i(he)f(quic)o(kly)e(is)h(able)g(to)h(reco)o(v)o(er)g
(from)f(his)-1329 50 y(mistak)o(e.)i(If)c(there)g(is)g(a)f(p)q(o)q(or)g
(bac)o(k)h(up)f(system,)h(his)f(data)g(ma)o(y)g(b)q(e)h(reco)o(v)o(ered)h
(in)-1329 50 y(a)e(corrupted)h(form)e(or)h(with)g(incorrect)h(p)q
(ermission)f(set)h(on)e(it.)-418 134 y(24)-999 b
24 @eop1
23 @bop0
23 @eop0
0 0 23 @bop1 262 307 a @F9 @sf(from)8 b(air)h(conditioning)f(problems,)i
(one)g(from)f(programmer)g(error.)17 b(A)o(t)10 b(all)e(three)j(cen)o
(ters)q(,)-1431 50 y(there)h(w)o(ere)f(mac)o(hines)g(with)f(irreplacable)h
(scien)o(ti\014c)h(data)e(that)h(had)g(nev)o(er)g(b)q(een)h(bac)o(k)o(ed)
-1431 50 y(up)h(in)h(their)g(liv)o(es.)-236 50 y(Man)o(y)e(bac)o(kup)g
(failures)g(are)h(caused)h(b)o(y)e(more)g(subbtle)h(problems)f(than)h
(these.)19 b(Still)-1433 49 y(it)11 b(is)i(instructiv)o(e)f(to)h(note)f
(that)h(man)o(y)e(sites)i @F6 @sf(never)k @F9 @sf(mak)o(e)12 b(a)f(second)j
(cop)o(y)e(of)g(their)g(data.)-1432 50 y(This)e(means)g(than)h(an)o(y)f
(problem)g(from)f(a)h(defectiv)o(e)i(disk)e(driv)o(e,)g(to)h(a)f(w)o(ater)g
(main)g(break,)-1432 50 y(to)j(a)h(t)o(yping)f(mistak)o(e)g(when)i(up)q
(dating)e(system)i(soft)o(w)o(are)f(can)g(sp)q(ell)g(disaster.)-1212 50 y
(If)f(the)g(primary)g(goal)f(is)h(that)g(of)f(main)o(taining)f(and)i
(restoring)h(data,)e(the)i(\014rst)g(thing)-1432 50 y(to)e(do)g(during)g
(an)h(inciden)o(t)f(needs)i(to)e(b)q(e)i(to)e(c)o(hec)o(k)h(when)g(the)h
(most)e(recen)o(t)i(bac)o(kup)f(w)o(as)-1432 49 y(completed.)29 b(If)17 b
(it)g(w)o(as)g(not)h(done)f(v)o(ery)h(recen)o(tly)m(,)h(an)e(immediate)f
(full)h(system)h(dump)-1432 50 y @F6 @sf(must)11 b @F9 @sf(b)q(e)i(made)e
(and)h(the)h(system)f(m)o(ust)g(b)q(e)h(sh)o(utdo)o(wn)f(un)o(til)f(it)g
(is)h(done.)17 b(Of)12 b(course,)h(one)-1431 50 y(can't)g(trust)i(this)f
(dump)g(as)g(the)g(attac)o(k)o(er)h(ma)o(y)d(ha)o(v)o(e)i(already)g(mo)q
(di\014ed)f(the)i(system.)-1395 108 y @F5 @sf(3.1.2)47 b(Main)o(taining)
15 b(and)h(restorin)o(g)f(service)-850 77 y @F9 @sf(Second)h(to)f(main)o
(taining)o 14 x(the)i(data,)e(main)o(taini)o(ng)f(service)j(is)e(imp)q
(ortan)o(t.)23 b(Users)17 b(ha)o(v)o(e)-1432 49 y(probably)c(come)i(to)f
(rely)h(on)f(the)h(computing)f(cen)o(ter)i(and)f(will)e(not)h(b)q(e)h
(pleased)g(if)f(they)-1431 50 y(can't)f(con)o(tin)o(ue)h(to)g(use)h(it)e
(as)h(planned.)-639 108 y @F5 @sf(3.1.3)47 b(Figuring)15 b(ho)o(w)h(it)f
(happ)q(enned)o -714 77 a @F9 @sf(This)d(is)h(b)o(y)g(far)f(the)i(most)f
(in)o(teresting)g(part)g(of)f(the)i(problem)e(and)h(in)g(practice)h(seems)g
(to)-1432 50 y(tak)o(e)e(preciden)o(t)i(o)o(v)o(er)f(all)e(of)h(the)h
(others.)19 b(It)12 b(of)g(course)i(strongly)e(con\015icts)i(with)e(the)h
(t)o(w)o(o)-1432 49 y(preceeding)i(goals.)-246 50 y(By)e(immediately)e
(making)h(a)g(complete)i(cop)o(y)f(of)f(the)h(system)h(after)f(the)h
(attac)o(k,)e(one)-1431 50 y(can)i(analyze)h(it)f(at)h(one's)g(leisure.)
21 b(This)15 b(means)g(that)f(w)o(e)h(don't)g(need)g(to)g(w)o(orry)g(ab)q
(out)-1432 50 y(normal)k(use)h(destro)o(ying)h(evidence)g(of)e(ab)q(out)h
(the)h(attac)o(k)o(er)g(re-en)o(tering)g(to)f(destro)o(y)-1431 50 y
(evidence)15 b(of)e(what)h(happ)q(enned.)-464 49 y(Ultimately)m(,)o 10 x
(one)e(ma)o(y)e(nev)o(er)i(b)q(e)g(able)f(to)g(determine)h(ho)o(w)f(it)f
(happ)q(enned.)19 b(One)12 b(ma)o(y)-1433 50 y(\014nd)j(sev)o(eral)h(w)o
(a)o(ys)g(that)g(\\could)f(ha)o(v)o(e)g(happ)q(enned")i(presen)o(ting)f(a)g
(n)o(um)o(b)q(er)g(of)f(things)-1432 50 y(to)e(\014x.)-107 108 y @F5 @sf
(3.1.4)47 b(Av)o(oiding)16 b(the)e(F)l(uture)h(Inciden)o(t)o(s)g(and)g
(Escalation)-1098 77 y @F9 @sf(This)f(needs)i(to)f(b)q(e)g(an)f(explicit)h
(goal)e(and)i(often)f(is)h(not)f(realized)h(un)o(til)f(m)o(uc)o(h)h(to)q
(o)f(late.)-1432 49 y(T)m(o)j(a)o(v)o(oid)g(future)i(inciden)o(ts)g(one)g
(of)f(course)i(should)e(\014x)g(the)h(problem)g(that)f(\014rst)h(o)q(c-)
-1431 50 y(curred)e(and)f(remo)o(v)o(e)g(an)o(y)f(new)i(securit)o(y)g
(vulnerabiliti)o(es)f(that)g(w)o(ere)h(added)f(either)h(b)o(y)-1432 50 y
(the)f(attac)o(k)o(ers)g(or)f(b)o(y)h(the)g(system)g(sta\013)g(while)f
(trying)g(to)h(\014gure)g(out)f(what)g(w)o(as)h(going)-1433 50 y(on.)6 50 y
(Bey)o(ond)h(this,)g(one)g(needs)h(to)e(prev)o(en)o(t)i(turning)e(a)h
(casual)f(attac)o(k)o(er)i(who)e(ma)o(y)g(not)-1432 49 y(b)q(e)i(caugh)o
(t)f(in)o(to)g(dedicate)h(opp)q(onen)o(t,)h(to)e(prev)o(en)o(t)i(en)o
(ticing)e(other)h(attac)o(k)o(ers)g(and)g(to)-1432 50 y(prev)o(en)o(t)12 b
(others)g(in)f(one's)h(organization)e(and)h(related)h(organizations)f
(from)g(b)q(eing)g(forced)-1431 50 y(to)i(in)o(tro)q(duce)i(restrictions)g
(that)f(w)o(ould)f(b)q(e)i(neither)f(p)q(opular)g(nor)g(helpful.)-1222 108 y
@F5 @sf(3.1.5)47 b(Av)o(oiding)16 b(lo)q(oking)g(fo)q(olish)-652 77 y
@F9 @sf(Another)h(real)f(w)o(orld)g(consideration)h(that)f(I)h(had)f(not)g
(exp)q(ecte)q(d)i(to)e(b)q(ecome)i(an)e(issue)-1431 49 y(is)h(one)h(of)f
(image)f(managemen)o(t.)28 b(In)18 b(practice,)h(it)e(is)h(imp)q(ortan)o
(t)e(not)i(to)f(lo)q(ok)g(fo)q(olish)-1433 50 y(in)f(the)h(press,)h(an)f
(issue)g(that)g(w)o(e)g(will)e(discuss)j(more)f(fully)e(in)i(an)f(app)q
(endix.)26 b(Also)17 b(it)-737 151 y(23)-999 b
23 @eop1
22 @bop0
@F1 @sf
[<
00FF800007FFF0001FFFFC003F01FE007C007F007E007F80FF007FC0FF003FC0FF003FE0FF
003FE07E003FE03C003FE000003FE000003FE000003FC000003FC000007F8000007F000000
7E000001FC0000FFF00000FFC0000007F0000001F8000001FC000000FE000000FF000000FF
000F007F801F807F803F807F803F807F803F807F803F80FF001F00FF000F81FE0007FFFC00
03FFF000007F8000>
27 39 -3 38 34] 51 @dc
[<
FFFF80FFFF80FFFF80FFFF80FFFF80FFFF80>
17 6 -1 16 23] 45 @dc
@F9 @sf
[<
00000F0000001F8000003FC000003FC0000038E00000306000006020003FE02000F0E02003
A0780007205C000E208E001C1107003C0E078038000380780003C0780003C0700001C0F000
01E0F00001E0F00001E0F00001E0F00001E0F00001E0F00001E0F00001E0700001C0780003
C0780003C0380003803C0007801C0007000E000E0007001C000380380000E0E000003F8000
>
27 37 -2 28 32] 81 @dc
22 @eop0
0 0 22 @bop1 262 307 a @F1 @sf(3)69 b(Pre-Planning)24 b(y)n(our)g(Inciden)n
(t)e(Handling)-1223 99 y @F2 @sf(3.1)55 b(Goals)-264 77 y @F9 @sf(Despite)
17 b(y)o(our)g(b)q(est)h(plans)f(to)g(a)o(v)o(oid)f(inciden)o(ts)h(they)h
(ma)o(y)e(v)o(ery)h(w)o(ell)g(o)q(ccur.)28 b(Prop)q(er)-1430 50 y
(planning)16 b(can)i(reduce)h(their)f(serv)o(er)q(it)o(y)m(,)g(cost)h(and)e
(incon)o(v)o(enience)i(lev)o(els.)29 b(There)19 b(are)-1431 50 y(ab)q(out)
13 b(half)g(dozen)i(di\013eren)o(t)g(goals)e(that)h(one)g(can)g(ha)o(v)o
(e)f(while)h(handling)e(an)i(inciden)o(t.)-1366 91 y(1.)20 b(Main)o(tain)
13 b(and)h(restore)h(data.)-541 83 y(2.)20 b(Main)o(tain)13 b(and)h
(restore)h(service.)-580 83 y(3.)20 b(Figure)14 b(out)g(ho)o(w)g(it)f
(happ)q(enned.)-594 83 y(4.)20 b(Av)o(oid)13 b(the)i(future)f(inciden)o
(ts)h(and)e(escalation.)-814 83 y(5.)20 b(Av)o(oid)13 b(lo)q(oking)g(fo)q
(olish.)-451 83 y(6.)20 b(Find)14 b(out)g(who)f(did)h(it.)-425 83 y(7.)20 b
(Punish)14 b(the)h(attac)o(k)o(ers.)-426 91 y(The)k(order)g(sho)o(wn)f(ab)q
(o)o(v)o(e)h(is)f(what)g(I)h(b)q(eliev)o(e)f(the)i(order)f(of)f
(priorities)g(generally)-1432 50 y(should)10 b(b)q(e.)17 b(Of)10 b(course)i
(in)e(a)g(real)g(situation)f(there)j(are)f(man)o(y)e(reasons)i(wh)o(y)f
(this)g(ordering)-1431 50 y(migh)o(t)k(not)i(b)q(e)h(appropriate)f(and)g
(w)o(e)g(will)f(discuss)i(the)f(whens)h(and)f(wh)o(y)g(of)f(c)o(hanging)
-1432 50 y(our)e(priorities)h(in)g(the)g(next)g(section.)-536 50 y(F)m(or)i
(an)o(y)h(giv)o(en)f(site,)i(one)f(can)g(exp)q(ect)i(that)e(a)g(standard)g
(goal)f(prioritization)f(can)-1431 49 y(b)q(e)g(dev)o(elop)q(ed.)21 b
(This)15 b(should)f(b)q(e)i(done)f(in)f(adv)n(ance.)21 b(There)16 b(is)e
(nothing)g(so)h(terrible)g(as)-1431 50 y(b)q(eing)e(alone)g(in)g(a)g @F6 @sf
(c)n(old)18 b @F9 @sf(mac)o(hine)13 b(ro)q(om)g(at)h(4)f(on)g(a)g(Sunda)o
(y)h(morning)e(trying)h(to)h(decide)-1431 50 y(whether)h(to)e(sh)o(ut)i
(do)o(wn)e(the)h(last)g(hole)g(to)f(protect)i(the)g(system)f(or)g(try)g
(to)g(get)g(a)f(phone)-1431 50 y(trace)h(done)f(to)h(catc)o(h)g(the)f
(attac)o(k)o(er.)19 b(It)13 b(is)g(similarly)f(di\016cult)g(to)h(decide)i
(in)d(the)i(middle)-1432 50 y(of)j(a)g(disaster)i(whether)g(y)o(ou)e
(should)h(sh)o(ut)g(do)o(wn)f(a)h(system)g(to)g(protect)h(the)f(existing)
-1432 50 y(data)13 b(or)h(do)g(ev)o(erything)g(y)o(ou)f(can)h(to)g(con)o
(tin)o(ue)g(to)g(pro)o(vide)f(service.)-1046 49 y(No)q(one)f(who)g(is)h
(handling)e(the)i(tec)o(hnical)f(side)h(of)e(an)i(inciden)o(t)f(w)o(an)o
(ts)g(to)g(mak)o(e)g(these)-1430 50 y(p)q(olicy)20 b(decisions)h(without)f
(guidance)h(in)f(the)i(middle)e(of)g(a)g(disaster.)40 b(One)21 b(can)g(b)q
(e)-1431 50 y(sure)16 b(that)g(these)h(decisions)f(will)e(b)q(e)i(repla)o
(y)o(ed)f(an)h(re-analyzed)g(b)o(y)f(a)g(dozen)h(\\Monda)o(y)-1432 50 y
(Morning)11 b(Quarterbac)o(ks")i(who)f(will)e(explain)h(what)h(should)g
(ha)o(v)o(e)g(b)q(een)h(done)f(could)g(not)-1432 50 y(b)q(e)i(b)q(othered)h
(to)f(mak)o(e)f(up)h(a)g(set)h(of)e(guidelines)h(b)q(efore.)-848 49 y(Let)g
(us)g(lo)q(ok)f(at)h(eac)o(h)g(of)g(these)h(goals)e(in)h(a)f(little)g
(more)h(detail.)-1081 108 y @F5 @sf(3.1.1)47 b(Main)o(taining)15 b(and)h
(restorin)o(g)f(data)-800 77 y @F9 @sf(T)m(o)g(me,)i(the)g(user)h(data)e
(is)g(of)g(paramoun)o(t)g(imp)q(ortance.)26 b(An)o(ything)16 b(else)i(is)e
(generally)-1432 50 y(replacable.)35 b(Y)m(ou)19 b(can)h(buy)g(more)f
(disk)h(driv)o(es,)h(more)f(computers,)h(more)f(electrical)-1431 50 y(p)q
(o)o(w)o(er.)e(If)13 b(y)o(ou)h(lose)g(the)g(data,)f(though)h(a)g(securit)o
(y)g(inciden)o(t)g(or)g(otherwise,)h(it)e(is)h(gone.)-1367 49 y(Of)k
(course,)j(if)d(the)h(computer)h(is)e(con)o(trolling)f(a)i(ph)o(ysical)f
(device,)i(there)g(ma)o(y)e(b)q(e)-1431 50 y(more)f(than)g(just)h(data)f
(at)h(stak)o(e.)29 b(F)m(or)17 b(example,)h(the)g(most)f(imp)q(ortan)o(t)g
(goal)f(for)h(the)-1431 50 y(computer)d(in)g(P)o(acemak)o(er)g(is)g(to)f
(get)i(the)f(next)g(pulse)h(out)f(on)f(time.)-1037 50 y(In)j(terms)h(of)e
(the)h(protection)h(of)e(user)i(data,)f(there)h(is)f @F6 @sf(nothing)21 b
@F9 @sf(that)16 b(can)g(tak)o(e)g(the)-1431 50 y(place)10 b(of)g(a)g(go)q
(o)q(d)g(bac)o(k-up)g(strategy)m(.)17 b(During)10 b(the)h(w)o(eek)g(that)f
(this)h(c)o(hapter)g(w)o(as)g(written,)-1432 49 y(three)j(cen)o(ters)h
(that)e(I)f(w)o(ork)h(with)g(su\013ered)h(catastrophic)g(data)e(loss.)18 b
(Tw)o(o)12 b(of)h(the)g(three)-735 147 y(22)-999 b
22 @eop1
21 @bop0
@F4 @sf
[<
7FC7F0FFE7F87FC7F00E03800E03800E03800E03800E03800E03800E03800E03800E03800E
03800F03800F87800FFF000EFE000E3C000E00000E00000E00000E00007E0000FE00007E00
00>
21 25 0 24 22] 104 @dc
[<
003FE0007FF0003FE000070000070000070000070000070000070007C7001FE7003FF7003C
3F00700F00700F00E00700E00700E00700E00700E00700E00700700F00700F003C1F001FF7
000FE70007C700>
20 27 -2 17 22] 113 @dc
@F2 @sf
[<
180FC0001C3FF8001EE07C001FC03E001F801F001F001F801F000F801F000FC01F000FC01F
000FC01F000FC01F000FC01F000FC01F000FC01F000FC01F000F801F000F801F001F001F80
1E001FF07C001F3FF8001F0FE0001F0000001F0000001F0000001F0000001F0000001F0000
001F0000001F0000001F0000001F0000001F000000FF000000FF000000>
26 35 -2 34 31] 98 @dc
@F2 @sf
[<
001FFFF000001FFFF0000000FE00000000FE00000000FE00000000FE00000000FE00000000
FE00000000FE00000000FE00000000FE00000000FE00000000FE00000000FE00000001FE00
000001FF00000003FF80000003FD80000007F8C000000FF0E000000FF06000001FE0700000
3FC03000003FC01800007F801C0000FF000C0000FF00060001FE00070001FE00030003FC00
018007F80001C007F80000C0FFFF800FFEFFFF800FFE>
39 34 -1 33 42] 89 @dc
21 @eop0
0 0 21 @bop1 262 307 a @F2 @sf(2.13)55 b(.rhosts)18 b(and)i(pro)n(xy)e
(logins)-745 77 y @F9 @sf(Just)c(as)f(some)g(p)q(eople)h(trust)g(eac)o(h)g
(other,)g(some)f(accoun)o(ts)h(trust)h(eac)o(h)e(other)h(and)f(some)-1431
50 y(mac)o(hines)h(trust)i(eac)o(h)f(other.)21 b(There)16 b(are)f(sev)o
(eral)h(mec)o(hanism)e(for)g(setting)h(up)g(a)g(trust)-1431 49 y
(relationship.)i(Among)c(these)i(are)g @F4 @sf(hosts.equ)o(iv)p @F9 @sf(,)o
13 x @F4 @sf(.rhosts)p @F9 @sf(,)o 13 x(and)e(pro)o(xy)h(logins.)-1257 50 y
(These)21 b(mec)o(hanisms)f(essen)o(tially)f(allo)o(w)g(a)g(user)i(to)f
(login)e(from)h(one)h(mac)o(hine)g(to)-1432 50 y(another)14 b(without)f(a)h
(passw)o(ord.)k(There)d(are)g(three)g(basic)f(implicatio)o(ns)f(to)h
(this.)-1249 91 y(1.)20 b(If)14 b(y)o(ou)f(can)h(imp)q(ersonate)g(a)f(mac)o
(hine,)g(y)o(ou)h(can)f(gain)g(access)q 15 x(to)g(other)h(mac)o(hines)-1328
50 y(without)g(ha)o(ving)f(to)g(pro)o(vide)h(passw)o(ords)h(or)f(\014nd)g
(bugs.)-965 83 y(2.)20 b(Once)c(y)o(ou)f(get)g(access)h(to)f(one)g(accoun)o
(t)g(on)g(one)g(mac)o(hine,)f(y)o(ou)h(are)g(lik)o(ely)e(to)i(b)q(e)-1328
50 y(able)f(to)g(reac)o(h)g(man)o(y)f(other)i(accoun)o(ts)g(on)e(other)i
(mac)o(hines.)-1036 83 y(3.)20 b(If)10 b(y)o(ou)g(gain)f(con)o(trol)h(of)g
(a)g(mac)o(hine,)g(y)o(ou)g(ha)o(v)o(e)g(gained)g(access)i(to)e(all)f(the)h
(mac)o(hines)-1328 50 y(that)k(trusts)h(it.)-289 91 y(V)m(arious)e(exp)q
(erimen)o(ts)i(ha)o(v)o(e)f(sho)o(wn)g(that)g(b)o(y)f(starting)h @F6 @sf
(almost)h(anywher)n(e)g(inter)n(est-)-1433 50 y(ing)p @F9 @sf(,)h(once)g
(one)g(has)h(con)o(trol)e(of)h(one)g(medium)f(size)i(mac)o(hine,)f(one)g
(can)g(gain)f(access)j(to)-1432 50 y(tens)e(of)f(thousands)h(of)f
(computers.)25 b(In)16 b(m)o(y)e(most)i(recen)o(t)h(exp)q(erimen)o(t,)g
(starting)e(from)-1432 50 y(a)f(medium)f(size)j(timesharing)d(system,)i(I)g
(gained)f(immediate)f(access)q 16 x(to)h(150)f(mac)o(hines)-1431 49 y(and)k
(surpassed)i(5000)d(distinct)i(mac)o(hines)f(b)q(efore)h(completing)f(the)h
(second)g(recurs)q(ion)-1431 50 y(step.)-85 116 y @F2 @sf(2.14)55 b
(Debugging)-417 77 y @F9 @sf(Ab)q(out)19 b(one)h(third)g(of)f(the)h
(securit)o(y)g(holes)g(that)g(I)f(ha)o(v)o(e)g(come)h(across)h(dep)q(end)g
(on)e(a)-1432 50 y(debugging)10 b(option)h(b)q(eing)h(enabled.)17 b(When)
12 b(installing)d(system)k(soft)o(w)o(are,)e(alw)o(a)o(ys)g(c)o(hec)o(k)
-1431 50 y(that)i(all)g(the)i(\\debugging")d(options)i(that)g(y)o(ou)f
(are)i(not)e(using)h(are)g(disabled.)-1253 116 y @F2 @sf(2.15)55 b
(Getting)18 b(P)n(eople)g(Mad)h(at)g(Y)-5 b(ou)-837 76 y @F9 @sf(It)16 b
(is)h(sad)g(but)g(true)h(that)f(a)f(small)g(n)o(um)o(b)q(er)h(of)f(sites)i
(ha)o(v)o(e)e(gotten)h(groups)g(of)g(hac)o(k)o(ers)-1431 50 y(angry)11 b
(at)h(them.)18 b(In)12 b(at)g(least)g(t)o(w)o(o)g(cases,)h(this)g(w)o(as)f
(b)q(ecause)h(the)g(hac)o(k)o(ers)g(had)f(found)g(an)-1432 50 y(in)o
(teresting)k(securit)o(y)g(hole,)f(had)h(tried)g(to)f(con)o(tact)h(the)h
(administrators)e(of)g(the)h(cen)o(ter)-1430 50 y(and)d(w)o(ere)i(giv)o
(en)e(a)h(hard)g(time)g(when)g(they)g(w)o(ere)h(seriously)f(trying)g(to)f
(help.)-1178 50 y(When)d(one)g(is)f(giv)o(en)g(a)h(\\tip")e(from)h
(someone)h(that)g(w)o(on't)f(iden)o(tify)g(themselv)o(es)i(ab)q(out)-1432
50 y(a)h(securit)o(y)j(problem,)d(it)h(is)g(generally)g(w)o(orth)g(in)o(v)o
(estigating.)j(It)e(is)f(not)g(w)o(orth)g(trying)g(to)-1432 49 y(tric)o(k)f
(the)g(informan)o(t)f(in)o(to)g(giving)f(his)i(phone)g(n)o(um)o(b)q(er)g
(to)g(y)o(ou.)17 b(It)12 b(almost)f(nev)o(er)i(w)o(orks,)-1432 50 y(and)f
(it)h(is)g(the)g(\\t)o(yp)q(e)h(of)e(dirt)o(y)h(tric)o(k")f(that)i(will)d
(probably)h(get)i(p)q(eople)f(mad)f(at)h(y)o(ou)g(and)-1432 50 y(at)g(the)i
(v)o(ery)f(least)g(prev)o(en)o(t)h(y)o(ou)e(from)g(getting)h(early)g(w)o
(arnings)f(in)h(the)g(future.)-599 576 y(21)-999 b
21 @eop1
20 @bop0
@F5 @sf
[<
1F8070E0F8F0F878F87C707C007C007C007C007C007C007C007C007C007C007C007C007C00
7C007C007C007C007C007C03FC03FC000000000000000000000000007800FC00FC00FC00FC
0078>
14 38 3 29 15] 106 @dc
@F5 @sf
[<
FFFF007C0F007E07003E03001F03801F81800F818007C18007E00003F00001F00060F80060
FC00607C00303E00303F003C1F003FFF80>
17 18 -1 17 21] 122 @dc
20 @eop0
0 0 20 @bop1 262 307 a @F9 @sf(routine)14 b(use)h(and)f(one)h(for)f
(privileged)g(access)i(with)e(a)g(hop)q(e)h(that)f(they)h(will)e(only)h
(share)-1431 50 y(the)g(former)g(with)f(their)i(secretary)m(.)-568 108 y
@F5 @sf(2.11.3)47 b(T)l(ro)s(jan)15 b(Horses)-466 77 y @F9 @sf(Ha)o(ving)
9 b(an)i(\\unsupp)q(orted")h(or)f(\\public")e(area)j(on)e(disk)h(where)h
(users)g(place)f(binaries)g(for)-1432 49 y(common)g(use)j(simpli\014es)e
(the)i(placemen)o(t)f(of)f(T)m(ro)r(jan)g(horse)i(programs.)j(Ha)o(ving)
12 b(sev)o(eral)-1431 50 y(areas)g(for)g(user)h(main)o(tained)e(binaries)i
(and)f(a)g(single)f(user)j(resp)q(onsible)f(for)f(eac)o(h)h(reduces)-1430
50 y(but)h(do)q(es)g(not)g(eliminate)f(this)h(problem.)-664 108 y @F5 @sf
(2.11.4)47 b(Wizards)-341 76 y @F9 @sf(Wizards)12 b(and)g(system)h
(programmers)f(often)h(add)f(their)h(o)o(wn)e(secur)q(it)o(y)i(problems.)k
(They)-1431 50 y(are)e(often)f(the)i(ones)f(to)g(create)h(privileged)e
(programs)h(that)g(are)g(needed)h(and)f(then)g(for-)-1432 50 y(gotten)h
(ab)q(out)h(without)f(b)q(eing)h(disabled.)26 b(Thinking)15 b(that)i(an)f
(accoun)o(t)h(do)q(esn't)h(need)-1431 50 y(to)12 b(b)q(e)i(c)o(hec)o(k)o
(ed/audited)g(b)q(ecause)g(it)f(is)f(o)o(wned)h(b)o(y)g(someone)g(that)g
(should)g(kno)o(w)f(b)q(etter)-1430 50 y(than)h(to)h(mak)o(e)f(a)h(silly)f
(mistak)o(e)g(is)h(a)g(risky)f(p)q(olicy)m(.)-825 108 y @F5 @sf(2.11.5)47 b
(F)l(unders)-337 76 y @F9 @sf(F)m(unders)14 b(are)g(often)g(giving)e
(accoun)o(ts)i(on)g(the)g(mac)o(hines)g(that)g(they)g(\\paid)f(for.")k
(All)c(to)-1432 50 y(often)e(these)h(accoun)o(ts)g(are)g(nev)o(er)g(used)g
(but)f(not)g(disabled)g(ev)o(en)h(though)f(they)g(are)h(found)-1432 50 y
(to)j(b)q(e)h(dorman)o(t)f(b)o(y)g(the)i(pro)q(cedures)g(discusse)q(d)g
(ab)q(o)o(v)o(e.)23 b(Again,)14 b(this)i(is)f(a)h(mistak)o(e)f(to)-1432
50 y(b)q(e)f(a)o(v)o(oided.)-206 116 y @F2 @sf(2.12)55 b(Group)19 b
(Accoun)n(ts)-555 76 y @F9 @sf(A)13 b(group)h(accoun)o(t)g(is)g(one)g
(that)f(is)h(shared)g(among)f(sev)o(eral)h(p)q(eople)g(in)g(suc)o(h)g(a)g
(w)o(a)o(y)f(that)-1432 50 y(one)g(can't)g(tell)g(whic)o(h)g(of)g(the)h(p)q
(eople)f(in)g(the)h(group)f(is)g(resp)q(onsible)i(for)e(a)g(giv)o(en)f
(action.)-1370 50 y(Those)18 b(of)f(y)o(ou)h(famil)o(iar)e(with)h
(Hardin's)h(\\The)g(T)m(ragedy)f(of)h(The)g(Common")e(will)-1433 50 y
(understand)g(that)g(this)g(is)f(a)h(problem)f(in)g(an)o(y)h(system)g
(computer)g(or)g(otherwise.)24 b(P)o(art)-1431 50 y(of)13 b(the)h(problem)g
(here)h(is)f(with)f(passw)o(ords.)-649 91 y(1.)20 b(Y)m(ou)c(can't)g(c)o
(hange)h(the)f(passw)o(ord)h(easily)m(.)24 b(Y)m(ou)16 b(ha)o(v)o(e)g(to)g
(\014nd)g(ev)o(ery)o(one)h(in)f(the)-1328 50 y(group)e(to)g(let)g(them)g
(kno)o(w.)-495 83 y(2.)20 b(If)14 b(something)f(Dum)o(b)g(happ)q(ens)i(y)o
(ou)f(don't)f(kno)o(w)g(who)h(to)g(talk)f(to)h(ab)q(out)f(it.)-1308 83 y
(3.)20 b(If)12 b(someone)h(shares)h(the)f(group)f(passw)o(ord)h(with)f
(another)h(p)q(erson,)g(y)o(ou)f(can)h(nev)o(er)-1328 50 y(\014nd)h(out)g
(who)g(did)f(or)h(who)g(all)e(the)j(p)q(eople)f(who)g(knew)g(the)h(passw)o
(ord)f(w)o(ere.)-1294 91 y(Group)h(accoun)o(ts)h(should)f @F6 @sf(always)j
@F9 @sf(b)q(e)e(a)o(v)o(oided.)22 b(The)15 b(administrativ)o(e)g(w)o(ork)g
(to)g(set)-1431 50 y(up)e(sev)o(eral)h(indep)q(enden)o(t)h(accoun)o(ts)f
(is)g(v)o(ery)g(small)e(in)h(comparison)g(to)h(the)g(extra)g(e\013ort)-1431
50 y(in)f(disaster)i(reco)o(v)o(ery)g(for)e(not)h(doing)f(so.)-602 49 y
(One)j(m)o(ust)f(not)h(only)e(a)o(v)o(oid)g(the)i(explicit)f(group)h
(accoun)o(ts,)g(but)f(also)g(the)h(implicit)-1433 50 y(ones.)29 b(This)18 b
(is)g(where)g(an)g(individual)o 16 x(shares)h(his)f(passw)o(ord)g(with)f
(dozens)i(of)e(p)q(eople)-1431 50 y(or)d(allo)o(ws)f(dozens,)i(p)q(erhaps)h
(h)o(undreds)g(of)e(them)g(to)h(use)g(his)f(through)h(pro)o(xy)f(logins)g
(or)-1432 50 y @F4 @sf(.rhosts)p @F9 @sf(.)o 530 242 a(20)-999 b
20 @eop1
19 @bop0
@F2 @sf
[<
00FE0007FFC00F83E01F01F03E00F83E00F87C007C7C007C7C007CFC007EFC007EFC007EFC
007EFC007EFC007EFC007EFC007EFC007EFC007EFC007EFC007EFC007EFC007C7C007C7C00
7C7C007C3E00F83E00F81F01F00F83E007FFC000FE00>
23 32 -2 31 28] 48 @dc
19 @eop0
0 0 19 @bop1 262 307 a @F2 @sf(2.10)55 b(Routing)-353 77 y @F9 @sf
(Routing)9 b(can)j(pro)o(vide)e(a)h(c)o(heap)h(partial)e(protection)h(for)g
(a)g(computer)g(cen)o(ter.)19 b(There)12 b(are)-1431 50 y(some)j(mac)o
(hines)g(that)h(don't)f(need)h(to)f(talk)g(to)g(the)h(outside)f(w)o(orld)g
(at)g(all.)21 b(On)16 b(others,)-1431 49 y(one)g(w)o(ould)f(migh)o(t)h
(lik)o(e)f(to)h(b)q(e)h(able)f(to)g(initiate)g(con)o(tact)g(out)o(w)o(ard)g
(but)h(not)f(ha)o(v)o(e)g(an)o(y)-1432 50 y(real)d(need)i(to)f(allo)o(w)e
(others)j(to)f(con)o(tact)g(this)g(mac)o(hine)g(directly)m(.)-985 50 y(In)c
(an)g(academic)h(computer)g(when)g(administrativ)o(e)e(computers)j(are)f
(placed)f(on)g(same)-1431 50 y(net)o(w)o(ork)g(as)h(the)g(studen)o(t)h
(mac)o(hines,)f(limiti)o(ng)e(routing)h(is)h(often)g(a)f(v)o(ery)h(go)q(o)q
(d)f(idea.)17 b(One)-1431 50 y(can)e(set)h(up)f(the)h(system)g(suc)o(h)g
(that)f(the)h(users)h(on)e(administrativ)o(e)f(mac)o(hines)h(can)h(use)-1431
49 y(the)d(resources)q 14 x(of)f(the)h(academic)g(mac)o(hines)g(without)f
(placing)g(them)h(at)f(signi\014can)o(t)h(risk)-1432 50 y(of)g(attac)o(k)h
(b)o(y)f(the)i(studen)o(t)g(mac)o(hines.)-567 50 y(Ideally)f(one)h(w)o
(ould)f(wish)h(to)f(place)h(the)h(mac)o(hines)f(that)f(need)i(to)f(b)q(e)g
(protected)q 16 x(on)-1432 50 y(their)9 b(o)o(wn)g(lo)q(cal)g(area)h(net)g
(with)f(activ)o(e)g(routers)i(to)e(prev)o(en)o(t)i(an)e(attac)o(k)o(er)h
(from)e(\\listening)-1432 50 y(in")20 b(on)g(the)h(broadcast)h(net.)39 b
(This)20 b(t)o(yp)q(e)i(of)e(an)g(attac)o(k)h(is)f(b)q(ecoming)h
(increasingly)-1432 50 y(p)q(opular.)-152 116 y @F2 @sf(2.11)55 b(Humans)
-357 76 y @F9 @sf(In)17 b(almost)f(all)g(tec)o(hnological)g(systems,)j
(the)f(w)o(eak)o(est)g(link)e(is)h(the)h(h)o(uman)f(b)q(eings)g(in-)-1432
50 y(v)o(olv)o(ed.)g(Since)c(the)h(users,)g(the)g(installers)f(and)f(the)i
(main)o(tainers)e(of)h(the)h(system)f(are)h(\(in)-1432 50 y(the)g(a)o(v)o
(erage)g(case\))h(all)e(h)o(umans,)g(this)h(is)f(a)h(serious)h(problem.)
-1001 108 y @F5 @sf(2.11.1)47 b(Managers)-372 76 y @F9 @sf(Managers,)17 b
(b)q(osses,)h(cen)o(ter)g(directors)g(and)e(other)h(resp)q(e)q(cte)q(d)h
(p)q(eople)f(are)f(often)h(giv)o(en)-1432 50 y(privileged)i(accoun)o(ts)h
(on)f(a)h(v)n(ariet)o(y)f(of)f(mac)o(hines.)36 b(Unfortunately)m(,)19 b
(they)i(often)e(are)-1431 50 y(not)d(as)h(famil)o(iar)e(with)h(the)h
(systems)h(as)f(the)g(programmers)f(and)h(system)g(main)o(tainers)-1432
50 y(themselv)o(es.)i(As)14 b(a)g(result,)g(they)g(often)g(are)h(the)f
(targets)h(of)e(attac)o(k.)18 b(Often)d(they)f(are)g(so)-1431 50 y(busy)i
(that)f(do)h(not)g(tak)o(e)f(the)i(securit)o(y)f(precautions)h(that)f
(others)h(w)o(ould)d(tak)o(e)i(and)g(do)-1432 50 y(not)d(ha)o(v)o(e)g(the)h
(same)f(lev)o(el)g(of)g(tec)o(hnical)g(kno)o(wledge.)18 b(They)c(are)f
(giv)o(en)g(these)i(privileges)-1432 49 y(as)f(a)g(sign)g(of)f(resp)q(ec)q
(t.)20 b(They)15 b(often)f(ignore)g(instructions)h(to)f(c)o(hange)g(passw)o
(ords)h(or)g(\014le)-1432 50 y(protections)-138 50 y(The)g(attac)o(k)o
(ers)g(rarely)f(sho)o(w)h(this)f(lev)o(el)g(of)g(resp)q(e)q(ct.)21 b(They)
15 b(break)g(in)o(to)f(the)h(unpro-)-1432 50 y(tected)j(managerial)d
(accoun)o(t)i(and)f(use)i(it)e(as)h(a)f(v)o(ector)h(to)g(the)g(rest)h(of)e
(the)h(system)h(or)-1432 50 y(cen)o(ter.)26 b(This)16 b(leads)g(to)g(an)g
(em)o(barrassing)g(situations)g(b)q(ey)o(ond)g(the)h(break-in)f(itself)f
(as)-1431 49 y(the)f(manager)g(is)f(made)h(to)g(lo)q(ok)f(p)q(ersonally)h
(incomp)q(eten)o(t)g(and)g(is)g(sometimes)g(accused)-1430 50 y(of)f(b)q
(eing)h(un\014t)g(for)f(his)h(p)q(osition.)-481 50 y(Prev)o(en)o(t)19 b
(this)f(t)o(yp)q(e)h(of)e(situation)h(form)f(o)q(ccurring)i(b)o(y)f
(giving)e(privileges)i(only)g(to)-1432 50 y(p)q(eople)c(that)g(need)h(and)e
(kno)o(w)h(ho)o(w)f(to)h(use)h(them.)-819 108 y @F5 @sf(2.11.2)47 b
(Secretaries)-397 76 y @F9 @sf(Secretaries)14 b(are)f(often)g(giv)o(e)f
(their)h(b)q(osses)h(passw)o(ords)g(b)o(y)e(their)h(b)q(osses.)20 b(When)
12 b(a)h(secre-)-1430 50 y(tary)h(uses)i(his)e(b)q(osses)i(accoun)o(t,)e
(he)h(has)g(all)e(the)i(privileges)f(that)h(his)f(b)q(oss)h(w)o(ould)f(ha)o
(v)o(e)-1432 50 y(and)f(generally)h(do)q(es)g(not)g(ha)o(v)o(e)g(the)g
(training)f(or)h(exp)q(ertise)i(to)e(use)g(them)g(safely)m(.)-1252 50 y
(It)g(is)f(probably)h(not)f(p)q(ossible)h(to)g(prev)o(en)o(t)h(b)q(osses)g
(from)e(giving)g(their)h(passw)o(ords)h(to)-1432 50 y(their)j(secretaries)q
(.)30 b(Still)17 b(one)h(can)g(reduce)h(the)f(need)h(for)e(this)h(b)o(y)f
(setting)i(up)e(groups)-1431 49 y(correctly)m(.)31 b(One)19 b(migh)o(t)d
(consider)j(giving)e(\\b)q(osses")i(t)o(w)o(o)f(separate)h(accoun)o(ts)g
(one)f(for)-737 201 y(19)-999 b
19 @eop1
18 @bop0
@F2 @sf
[<
001800C000003800E000003C01E000007C01F000007E03F000007E03F00000FE03D80000FB
07D80001FB079C0001F38F8C0001F18F0C0003E18F060003E0DF060007E0DE070007C0DE03
0007C07E03000F807C01800F807C01800F807801801F007800C0FFE7FF07F8FFE7FF07F8>
37 22 -1 21 40] 119 @dc
@F9 @sf
[<
FFFFE0F803E07800E03C00603C00201E00201F00300F001007801007801003C01003E00001
E00000F00000F000007800007C00003C00001E00401E00400F00400F804007806003C06003
C07001E07C01F07FFFF0>
20 28 -2 27 25] 90 @dc
@F5 @sf
[<
FFFFFCFFFFFC7E00FC7F003C3F001C1F801C1F800E0FC00E0FE00607E00603F00603F80601
F80000FC0000FC00007E00007F00003F00C01F80C01FC0C00FC0E007E0E007E07003F07803
F87E01F87FFFFC7FFFFC>
23 28 -3 27 29] 90 @dc
@F4 @sf
[<
FFFFC0FFFFC0FFFFC07801C03C01C01E01C00F000007800003E00001F000007800003C0070
1E00700F007007807FFFC07FFFC03FFFC0>
18 18 -1 17 22] 122 @dc
[<
60F0F0600000000060F0F0F0F0F0F0F0F0F0F0F0F0F0F0F060>
4 25 -9 24 22] 33 @dc
[<
3C00003F00007F80007BC00079C00001C00000E00000E00000E00000F00000F00000F00001
B80001B800039800039C00039C00071C00071C00070E000E0E000E0E000E07001C07007F1F
C0FF9FE07F1FC0>
19 27 -1 17 22] 121 @dc
[<
00F80003FE0007FF000707000E03800E03801C01C01C01C01C01C01C01C01C01C01C01C01C
01C01C01C01C01C01C01C01C01C01C01C01C01C01C01C01C01C01C01C07F07F0FF8FF87F07
F0>
21 25 0 24 22] 85 @dc
[<
7F0F00FF9F007F1F001C17001C37001C37001C37001C77001C77001C67001C67001CE7001C
E7001CE7001CC7001CC7001DC7001DC7001D87001D87001D87001D07007F1FC0FF3FE07E1F
C0>
19 25 -1 24 22] 78 @dc
[<
7FFFE0FFFFE07FFFE01C00E01C00E01C00E01C00E01C00E01C00001C1C001C1C001FFC001F
FC001FFC001C1C001C1C001C00001C00001C01C01C01C01C01C01C01C07FFFC0FFFFC07FFF
C0>
19 25 -1 24 22] 69 @dc
[<
07FC000FFE0007FC0000E00000E00000E00000E00000E00000E00000E00000E00000E00000
E00000E00000E00000E00000E00000E000E0E0E0E0E0E0E0E0E0E0E0E0FFFFE0FFFFE07FFF
E0>
19 25 -1 24 22] 84 @dc
@F4 @sf
[<
03F8000FFE003FFF807C07C07001C0E000E0E000E0E000E0E000E07803C03FFF801FFF001F
FC001800003800001BE0001FF0000FF8001C1C00380E00380E00380E00380E00380E001C1C
C00FFFE007F7E003E3C0>
19 28 -1 17 22] 103 @dc
@F2 @sf
[<
01FF000FFFC01F01F03C0038780038F8001CF0001CF0001EF0001EF0003EF000FE7801FE78
07FC3C1FFC1E7FF807FFF003FFE007FFC00FFF801FFFC01FF9E03FE0F03F80783F00783E00
783C00781C00781C00F00E00F00703E003FFC000FE00>
23 32 -2 31 28] 56 @dc
@F2 @sf
[<
03F8000FFE001C0F801E03C03F01E03F00F03F00F83F00F81E007C00007C00007C00207E07
FC7E0FFE7E1E037E3E01FE7C00FE7C00FEFC007EFC007EFC007EFC007EFC007CFC007CFC00
7C7C00787C00F83E00F01E01F00F83E007FF8001FE00>
23 32 -2 31 28] 57 @dc
18 @eop0
0 0 18 @bop1 324 307 a @F9 @sf(While)13 b(the)i(am)o(bitio)o(us)e(and)h
(dedicated)h(system)g(manager)e(is)h(encouraged)h(to)f(\014x)g(all)-1433
50 y(of)f(the)h(securit)o(y)g(problems)g(that)g(exist,)f(\014xing)g(these)i
(few)f(will)e(discourage)i(most)g(of)f(the)-1431 50 y(attac)o(k)o(ers.)-174
116 y @F2 @sf(2.7)55 b(New)19 b(Securit)n(y)e(Holes)-611 77 y @F9 @sf(New)g
(securit)o(y)g(holes)g(are)h(alw)o(a)o(ys)d(b)q(eing)i(found.)26 b(There)
18 b(are)f(a)g(n)o(um)o(b)q(er)g(of)f(computer)-1431 49 y(mail)o(ing)g
(lists)i(and)f(advisory)g(groups)h(the)h(follo)o -1 x(w)d(this.)30 b
(Three)19 b(groups)f(of)f(particular)-1432 50 y(in)o(terest)e(are)f(CER)m
(T,)f(ZARDOZ)h(and)g(CIA)o(C.)-747 108 y @F5 @sf(2.7.1)47 b(CER)l(T)-275
77 y @F9 @sf(Cert)21 b(is)f(a)f(D)o(ARP)m(A)h(sp)q(onsored)h(group)f(to)g
(help)h(in)o(ternet)g(sites)g(deal)f(with)g(securit)o(y)-1431 50 y
(problems.)38 b(They)21 b(ma)o(y)f(b)q(e)h(con)o(tacted)h(as)e @F4 @sf
([email protected])o(ei.cm)o(u.edu)o @F9 @sf(.)37 b(They)21 b(also)-1432 49 y
(main)o(tai)o(n)13 b(a)g(24)h(hour)g(phone)g(n)o(um)o(b)q(er)g(for)f
(secur)q(it)o(y)h(problems)g(at)g(\(412\))f(268-7090.)-1362 108 y @F5 @sf
(2.7.2)47 b(ZARDOZ)-348 77 y @F9 @sf(Neil)12 b(Gorsuc)o(h)i(mo)q(derates)g
(a)f(computer)h(secur)q(it)o(y)g(discussion)g(group.)j(He)d(ma)o(y)f(b)q
(e)h(con-)-1432 50 y(tacted)249 b(as)g @F4 @sf(zardoz!secu)o(rity)o(-requ)o
(e)p(st@u)o(unet.)o(UU.NE)o(T)-1433 50 y @F9 @sf(or)13 b @F4 @sf
(security-req)o(uest@)o(cpd.)p(c)o(om)p @F9 @sf(.)o -586 107 a @F5 @sf
(2.7.3)47 b(CIA)o(C)-266 77 y @F9 @sf(CIA)o(C)16 b(is)h(the)h(Departmen)o
(t)f(of)f(Energy's)i(Computer)f(Inciden)o(t)h(Advisory)f(Capabili)o(t)o(y)
-1433 50 y(team)10 b(led)g(b)o(y)g(Gene)h(Sc)o(h)o(ultz.)17 b(This)10 b
(team)g(is)h(in)o(terested)h(in)d(disco)o(v)o(ering)i(and)f(eliminati)o
(ng)-1433 50 y(securit)o(y)j(holes,)g(exc)o(hanging)g(securit)o(y)h(to)q
(ols,)e(as)h(w)o(ell)f(as)h(other)h(issues.)19 b(Con)o(tact)13 b(CIA)o(C)
-1432 49 y(as)g @F4 @sf([email protected])o(lnl.g)o(ov)p @F9 @sf(.)-478 117 y
@F2 @sf(2.8)55 b(Excess)18 b(Services)-506 76 y @F9 @sf(Ev)o(ery)e(extra)h
(net)o(w)o(ork)f(service)i(that)e(a)f(computer)i(o\013ers)g(p)q(oten)o
(tially)e(p)q(oses)i(an)f(addi-)-1432 50 y(tional)c(secur)q(it)o(y)j
(vulnerabilit)o(y)l(.)j(I)c(am)f(emphatically)g @F6 @sf(not)18 b @F9 @sf
(suggesting)d(that)f(w)o(e)h(remo)o(v)o(e)-1432 50 y(those)d(services)q
13 x(that)g(the)h(users)g(are)g(using,)f(I)g(am)f(encouraging)h(the)h
(remo)o(v)n(al)d(of)i(services)-1430 50 y(that)h(are)h(un)o(used.)k(If)13 b
(y)o(ou)g(are)h(not)f(getting)g(a)g(b)q(ene\014t)i(from)d(a)h(service,)i
(y)o(ou)e(should)g(not)-1432 50 y(pa)o(y)g(the)i(price)g(in)f(terms)h(of)e
(system)i(o)o(v)o(erhead)g(or)f(securit)o(y)h(risk.)k(Sometimes,)14 b(as)g
(with)-1432 49 y @F4 @sf(rexecd)f @F9 @sf(under)j(unix,)f(the)h(risks)f
(are)h(not)f(immediately)e(apparen)o(t)j(and)f(are)h(caused)g(b)o(y)-1432
50 y(unexp)q(ected)g(in)o(teractions)e(that)g(do)f(not)h(include)g(an)o(y)g
(bugs)g(p)q(er)g(se.)-1102 116 y @F2 @sf(2.9)55 b(Searc)n(h)19 b(P)n(aths)
-445 77 y @F9 @sf(If)13 b(a)g(user)h(has)g(set)h(his)e(searc)o(h)i(path)e
(to)h(include)f(the)h(curren)o(t)h(directory)g(\(\\.")i(on)c(Unix\),)-1432
50 y(he)j(will)e(almost)h(alw)o(a)o(ys)g(ev)o(en)o(tually)g(ha)o(v)o(e)h
(a)f(serious)i(problem.)24 b(There)16 b(are)h(a)e(n)o(um)o(b)q(er)-1431
50 y(of)h(securit)o(y)h(vulnerabilities)f(that)h(this)g(p)q(oses)h(as)f(w)o
(ell)f(as)h(logistical)e(ones.)27 b(Searc)o(hing)-1431 49 y(through)13 b
(the)h(all)f(of)g(the)h(users)h(initial)o(izatio)o(n)d(\014les)i(and/or)g
(through)f(the)h(pro)q(cess)q 15 x(table)-1432 50 y(\(with)f @F4 @sf(ps)
22 b(-e)13 b @F9 @sf(on)h(unix\))f(can)h(detect)i(this)e(problem.)-147 305 y
(18)-999 b
18 @eop1
17 @bop0
@F2 @sf
[<
FFFF83FFFCFFFF83FFFC07F0003FC007F0007F8007F0007F0007F000FF0007F001FE0007F0
01FC0007F003F80007F007F80007F007F00007F00FE00007F01FE00007F01FC00007F83F80
0007FE7F800007F77F000007F3FE000007F1FE000007F0FC000007F038000007F018000007
F00E000007F007000007F003800007F001C00007F000E00007F000300007F000180007F000
0E0007F000070007F0000380FFFF803FFCFFFF803FFC>
38 34 -2 33 44] 75 @dc
@F5 @sf
[<
003FFF0000003FFF00000003F000000003F000000003F000000003F000000003F000000003
F000000003F000000003F000000003F000000003F000000007F80000000FF80000000FFC00
00001FCE0000003F860000003F870000007F03000000FE01800000FE01C00001FC00C00003
F800600003F800700007F00030000FE0003800FFFC01FF80FFFC01FF80>
33 28 -1 27 36] 89 @dc
[<
07F007F01FFE3FF87E07FE1C7C01F806FC07F006F80FF000F81FD800781F8C00783F060038
7E03001CFC030004FC018003F800C001F000C003F0006003E0003003E001FF03F001FF07C8
000007C4000007C2000007C3000007C18000078180000381800003C1800001C1000000E300
00003C0000>
32 29 -2 28 37] 38 @dc
17 @eop0
0 0 17 @bop1 365 307 a @F9 @sf(to)17 b(b)q(e)h(a)f(\014le)h(to)f(b)q(e)h
(in)f(his)g(home)g(directory)h(that)g(is)f(o)o(wned)g(b)o(y)h(someone)f
(else.)-1328 50 y(Flagging)12 b(this)i(when)h(the)f(link-coun)o(t)f(is)h
(\\1")f(is)h(w)o(orth)o(while.)-1039 90 y(Automated)d(scripts)h(can)g(\014nd)f
(these)i(errors)g(b)q(efore)f(they)f(are)h(exploited.)17 b(In)11 b
(general)-1431 49 y(a)g(serious)i(error)g(of)e(one)h(of)f(the)i(t)o(yp)q
(es)g(describ)q(ed)g(ab)q(o)o(v)o(e)f(is)g(en)o(tered)h(in)o(to)e(a)h(giv)o
(en)f(cluster)-1430 50 y(univ)o(ersit)o(y)i(system)i(ev)o(ery)g(other)f(w)o
(eek.)-646 116 y @F2 @sf(2.6)55 b(W)-5 b(ell)18 b(Kno)n(wn)i(Securit)n(y)d
(Holes)-803 77 y @F9 @sf(While)10 b(h)o(undreds)j(of)d(securit)o(y)j
(holes)e(exist)h(in)f(commonly)f(used)i(programs,)f(a)g(v)o(ery)h(small)
-1433 50 y(n)o(um)o(b)q(er)17 b(of)f(these)j(accoun)o(t)e(for)g(most)g(of)f
(the)i(problems.)28 b(Under)18 b(mo)q(dern)f(v)o(ersion)g(of)-1432 49 y
(VMS,)c(most)h(of)f(them)h(relate)h(to)e(either)i(DECNET)f(or)g(creating)g
(Mailb)q(o)o(xes.)-1192 50 y(Under)19 b(unix,)f(a)g(handful)f(of)h
(programs)g(accoun)o(t)g(for)g(most)g(of)g(the)h(problems.)30 b(It)-1431
50 y(is)15 b(not)h(that)h(these)g(bugs)f(are)h(an)o(y)e(w)o(orse)i(or)f
(easier)h(to)f(exploit)f(than)i(the)f(others,)h(just)-1431 50 y(that)d
(they)h(are)f(w)o(ell)g(kno)o(wn)g(and)g(p)q(opular.)19 b(The)c(in)o
(terested)h(reader)f(is)g(referred)h(to)e(the)-1431 50 y(Hac)o(kman)f(Pro)r
(ject)i(for)f(a)f(more)h(complete)g(listing.)-831 89 y @F5 @sf(Set-Uid)o
15 x(Shell)h(Scripts.)20 b @F9 @sf(Y)m(ou)14 b(should)h(not)f(ha)o(v)o(e)h
(an)o(y)f(set-uid)i(shell)e(scripts.)23 b(If)14 b(y)o(ou)-1329 50 y(ha)o
(v)o(e)c(system)i(source,)g(y)o(ou)d(should)i(consider)g(mo)q(difying)o
9 x(c)o(hmo)q(d)g(to)f(prev)o(en)o(t)h(users)-1327 50 y(from)i(creating)i
(set-uid)f(programs.)-678 82 y @F5 @sf(FTP)l(.)20 b @F9 @sf(The)14 b(\014le)f
(transfer)h(utilities)e(has)h(had)g(a)g(n)o(um)o(b)q(er)g(of)g(problems)g
(b)q(oth)g(in)f(terms)i(of)-1329 50 y(con\014guration)f(managemen)o(t)f
(\(remem)o(b)q(ering)h(to)g(disallo)o(w)e(accoun)o(ts)i(lik)o(e)f(\\sync")
-1328 50 y(from)f(b)q(eing)h(used)g(to)f(transfer)i(\014les\))f(and)f
(legitimate)g(bugs.)17 b(P)o(atc)o(hed)12 b(v)o(ersion)g(are)-1328 50 y(a)o
(v)n(ailabl)o(e)h(for)g(most)h(systems.)-590 82 y @F5 @sf(Login)19 b @F9 @sf
(on)13 b(the)h(Sun)f(386i)f(and)h(under)h(Dec)f(Ultrix)g(3.0,)f(un)o(til)g
(a)h(b)q(etter)h(\014x)f(is)g(a)o(v)n(ailabl)o(e,)-1176 83 y(c)o(hmo)q(d)h
(0100)e(/bin/login)-573 82 y(to)i(protect)h(y)o(ourself)f(from)f(a)h
(serious)g(securit)o(y)h(bug.)-954 82 y @F5 @sf(Send)o(mail.)20 b @F9 @sf
(Probably)14 b(the)g(only)f(program)g(with)h(as)g(man)o(y)f(securit)o(y)h
(problems)g(as)g(the)-1328 50 y(y)o(ello)o(wpages)e(system)h(itself.)18 b
(Again)12 b(a)g(patc)o(hed)h(v)o(ersion)g(should)f(b)q(e)i(obtained)e(for)
-1329 50 y(y)o(our)i(system.)-333 82 y @F5 @sf(TFTP)l(.)21 b @F9 @sf(This)f
(program)g(should)h(b)q(e)g(set)g(to)g(run)g(as)g(an)f(unprivileged)g
(user)i(and/or)-1329 50 y(c)o(hro)q(oted.)-271 82 y @F5 @sf(Rw)o(alld.)f
@F9 @sf(This)14 b(program)f(needs)i(to)f(b)q(e)g(set)h(to)f(run)g(as)g(an)g
(unprivileged)f(user.)-1282 83 y @F5 @sf(Mkdir.)20 b @F9 @sf(Some)f(v)o
(ersions)g(of)f(unix)g(do)g(not)g(ha)o(v)o(e)h(an)f(atomic)g(k)o(ernel)h
(call)e(to)i(mak)o(e)f(a)-1329 50 y(directory)11 b(and)f(hence)h(can)f
(lea)o(v)o(e)g(the)g(ino)q(des)h(in)e(a)h(\\bad")f(state)i(if)e(it)g(is)h
(in)o(terrupted)-1327 49 y(at)15 b(just)h(the)f(righ)o(t)g(momen)o(t.)21 b
(If)15 b(y)o(our)g(system)h(is)f(one)g(of)g(these)h(it)f(is)g(w)o(orth)o
(while)-1329 50 y(to)g(write)h(a)f(short)h(program)f(that)g(increases)i
(the)f(job)f(priorit)o(y)g(of)f(a)h(job)g(while)g(it)-1329 50 y(is)f
(making)e(a)i(directory)h(so)f(as)g(to)f(mak)o(e)h(it)f(more)h(di\016cult)f
(to)h(exploit)f(this)h(hole.)-1416 82 y @F5 @sf(YP)h(&)h(NFS.)21 b @F9 @sf
(Both)16 b(presen)o(t)h(gian)o(t)d(securit)o(y)j(holes.)22 b(It)16 b(is)f
(imp)q(ortan)o(t)g(to)g(arrange)h(to)-1329 50 y(get)c(patc)o(hes)h(as)e
(so)q(on)h(as)f(they)h(b)q(ecome)h(a)o(v)n(ai)o(labl)o(e)e(for)g(these)i
(subsystems)g(b)q(ecause)-1327 50 y(w)o(e)j(can)f(exp)q(ect)i(more)e
(secur)q(it)o(y)h(problems)f(with)g(them)g(in)g(the)h(future.)23 b(Sun)15 b
(has)-1328 50 y(recen)o(tly)g(started)g(a)f(computer)g(securit)o(y)h
(group)f(that)g(will)e(help)i(solv)o(e)g(this)f(set)i(of)-1329 50 y
(problems.)416 124 y(17)-999 b
17 @eop1
16 @bop0
@F5 @sf
[<
40300808040402027AFEFEFCFC78>
7 14 -3 28 13] 39 @dc
@F5 @sf
[<
FF07FCFF07FC0C03E00607C0070F80039F0001DF0000FE00007C0000F80001F80001FC0003
EE0007C7000F83801F8180FFC7FCFFC7FC>
22 18 -1 17 25] 120 @dc
16 @eop0
0 0 16 @bop1 262 307 a @F2 @sf(2.5)55 b(File)18 b(Protections)-519 77 y
@F9 @sf(With)g(\014le)h(protections)h(simple)e(measures)i(can)g(a)o(v)o
(oid)d(most)i(problems.)33 b(Batc)o(h)20 b(jobs)-1432 50 y(should)13 b(b)q
(e)i(run)f(on)g(a)f(regular)h(basis)g(to)g(c)o(hec)o(k)h(that)f(the)g
(protections)h(are)f(correct.)-1342 91 y @F5 @sf(W)l(ritable)h(Binaries)h
(and)f(System)f(Directories.)20 b @F9 @sf(The)j(most)f(common)g(problem)
-1329 50 y(with)16 b(\014le)h(protections)g(is)g(that)f(some)h(system)g
(binary)f(or)h(directory)g(is)f(not)h(pro-)-1329 50 y(tected.)i(This)13 b
(allo)o(ws)e(the)i(attac)o(k)o(er)f(to)h(mo)q(dify)e(the)i(system.)18 b
(In)12 b(this)h(manner,)f(an)-1329 49 y(attac)o(k)o(er)h(will)e(alter)h(a)g
(common)f(program,)h(often)g(the)h(directory)g(listing)e(program)-1329 50 y
(to)18 b(create)h(a)f(privileged)f(accoun)o(t)h(for)g(them)g(the)g(next)g
(time)g(that)g(a)f(privileged)-1329 50 y(user)e(uses)g(this)f(command.)-445
66 y(When)i(p)q(ossible)f(the)h(system)f(binaries)h(should)e(b)q(e)i(moun)o
(ted)f(read-only)m(.)21 b(In)15 b(an)o(y)-1329 50 y(ev)o(en)o(t)g(a)f
(program)f(should)h(systematically)f(\014nd)i(and)e(correc)q(t)i(errors)g
(in)f(the)h(pro-)-1329 50 y(tection)g(of)e(system)i(\014les.)k(\\Public")
13 b(areas)h(for)g(unsupp)q(orted)i(executable)f(should)-1329 50 y(b)q(e)k
(mo)q(derated)f(and)g(these)i(executable)f(should)e @F6 @sf(never)23 b
@F9 @sf(b)q(e)c(used)f(b)o(y)g(privileged)-1329 50 y(users)e(and)d
(programs.)18 b(System)d(data)e(\014les)h(su\013er)h(from)f(simila)o(r)f
(vulnerabilities.)-1424 83 y @F5 @sf(Readable)i(Restricted)o 15 x(System)f
(Files.)22 b @F9 @sf(Just)16 b(as)g(the)h(encrypted)g(passw)o(ords)g(need)
-1328 49 y(to)11 b(b)q(e)h(protecte)q(d,)g(the)g(system)g(has)g(other)g
(data)f(that)g(is)g(w)o(orth)g(protecting.)18 b(Man)o(y)-1329 50 y
(computers)d(ha)o(v)o(e)e(passw)o(ords)i(and)e(phone)h(n)o(um)o(b)q(ers)h
(of)e(other)h(computers)h(stored)-1328 50 y(for)i(future)g(use.)28 b(The)
17 b(most)f(common)g(use)i(of)e(this)h(t)o(yp)q(e)g(of)f(information)f(is)i
(for)-1329 50 y(net)o(w)o(ork)g(mail)e(b)q(eing)h(transp)q(orted)i(via)e
(UUCP)g(or)h(protected)h(DECNET.)e(It)h(is)-1329 50 y(di\016cult)h(to)f
(rew)o(ork)i(these)g(systems)g(so)f(that)g(this)g(information)e(w)o(ould)h
(not)h(b)q(e)-1328 50 y(neces)q(sary)j(and)f(hence)h(it)f(m)o(ust)f(b)q(e)i
(protected.)37 b(Y)m(ou)20 b(ha)o(v)o(e)f(an)h(obligatio)o(n)f(to)-1329
49 y(protect)d(this)f(data)g(ab)q(out)g(y)o(our)f(neigh)o(b)q(ors)h(just)g
(as)g(they)h(ha)o(v)o(e)e(a)h(resp)q(onsibilit)o(y)-1329 50 y(to)f
(protect)h(similar)e(data)g(that)h(they)g(ha)o(v)o(e)g(ab)q(out)g(y)o(ou.)
-1003 83 y @F5 @sf(Home)h(Dir's)h(and)f(Init)g(Files)i(Shou)o(ldn't)d(Be)i
(W)l(ritable.)k @F9 @sf(Chec)o(king)g(that)f(these)-1327 50 y(directories)e
(and)e(\014les)h(can)f(b)q(e)h(written)g(only)f(b)o(y)g(the)h(o)o(wner)f
(will)f(prev)o(en)o(t)i(man)o(y)-1329 50 y(careless)i(errors.)25 b(It)16 b
(is)g(also)f(w)o(orth)o(while)g(to)h(c)o(hec)o(k)g(that)g(p)q(eoples)h
(mail)d(arc)o(hiv)o(es)-1328 50 y(are)g(not)g(publically)e(readable.)19 b
(Though)13 b(this)h(is)f(not)h(directly)g(a)g(securit)o(y)g(threat,)-1328
49 y(it)g(is)g(only)f(one)h(more)g(line)f(of)g(co)q(de)i(while)e(writing)g
(the)i(rest)g(of)e(this.)-1106 67 y(In)20 b(man)o(y)g(v)o(ersions)g(of)g
(the)h(common)e(op)q(erating)h(systems)h(sp)q(ecial)g(c)o(hec)o(ks)g(are)
-1328 50 y(placed)13 b(in)f(the)h(command)e(in)o(terpreters)q 14 x(to)h
(prev)o(en)o(t)h(them)f(from)g(using)g(initiali)o(za-)-1330 49 y(tion)h
(\014les)h(that)g(w)o(ere)g(written)g(b)o(y)g(a)f(third)g(part)o(y)m(.)18 b
(In)13 b(this)h(case)g(there)h(are)f(still)f(at)-1329 50 y(least)g(t)o(w)o
(o)e(t)o(yp)q(es)i(of)f(in)o(teresting)g(attac)o(ks.)18 b(The)13 b(\014rst)g
(is)f(to)g(install)e(a)i(T)m(ro)r(jan)g(horse)-1328 50 y(in)17 b(the)i(p)q
(erson's)f(home)f(directory)i(tree)g(rather)f(than)g(in)f(the)h(initial)o
(ization)e(\014le)-1329 50 y(itself)c(and)f(the)h(second)h(is)e(to)h
(simple)f(remo)o(v)o(e)h(the)g(initiali)o(zation)e(\014les)i(themselv)o
(es.)-1328 50 y(Often)k(securit)o(y)g(w)o(eaknesses)g(are)g(remedied)f
(through)g(the)h(prop)q(er)f(initiali)o(zation)-1330 50 y(\014le)f(and)g
(without)f(these)j(\014les)e(the)g(vulnerabilities)f(are)i(re-in)o(tro)q
(duced.)-1258 83 y @F5 @sf(No)h(Unexp)q(ected)o 15 x(Publically)g(W)l
(ritable)g(Files)g(or)f(Directories.)20 b @F9 @sf(There)g(are)g(of)-1329
49 y(course)e(places)f(and)g(individual)o 16 x(\014les)g(that)f(should)h
(b)q(e)g(publically)e(writable)h(but)-1328 50 y(these)k(are)e(stable)h
(quan)o(tities)f(and)g(the)g(script)h(can)g(ignore)e(them.)31 b(In)19 b
(practice)-1328 50 y(user)e(seems)f(to)f(react)h(w)o(ell)f(to)g(b)q(eing)g
(told)g(ab)q(out)g(\014les)g(that)g(they)h(o)o(wn)f(that)g(are)-1328 50 y
(publically)e(o)o(v)o(erwritable.)-529 83 y @F5 @sf(When)i(P)o(aren)n(ts)f
(aren't)h(Owners.)20 b @F9 @sf(While)13 b(it)f(is)h(not)g(un)o(usual)g
(for)f(someone)i(to)f(ha)o(v)o(e)-1329 50 y(a)k(link)f(to)h(a)g(\014le)g
(outside)g(of)g(his)g(directory)h(structure,)h(it)e(is)g(un)o(usual)g(for)f
(there)-735 156 y(16)-999 b
16 @eop1
15 @bop0
@F4 @sf
[<
7F03C0FF87E07F07E01C0E701C0E701C0E201C0E001C0E001C0E001C0E001C1C001FFC001F
F8001FFC001C1E001C0F001C07001C07001C07001C07001C0F001C1E007FFC00FFF8007FE0
00>
20 25 -1 24 22] 82 @dc
@F4 @sf
[<
0E0E000F1E000F1E001B1B0019130019B30019B30019B30019B30019B30019B30039B38039
F38039F38038E3803803803803803803803001807001C07001C07001C0FC07E0FE0FE0FC07
E0>
19 25 -1 24 22] 87 @dc
@F4 @sf
[<
7FF800FFFE007FFF001C0F801C07801C03C01C01C01C01C01C00E01C00E01C00E01C00E01C
00E01C00E01C00E01C00E01C01E01C01C01C01C01C03C01C07801C0F007FFF00FFFE007FF8
00>
19 25 0 24 22] 68 @dc
@F4 @sf
[<
70F8F8F870000000000000000070F8F8F870>
5 18 -8 17 22] 58 @dc
[<
C00000E00000E000007000007000003800003800001C00001C00000E00000E000007000007
000003800003800001C00001C00000E00000E000007000007000003800003800001C00001C
00000E00000E00000700000700000380000380000180>
17 32 -2 28 22] 47 @dc
[<
0F1E000F1E000F1E001DB7001DB7001DB7001DB70019B30019F30019F30038E38038038038
0380380380380380FF1FE0FFBFE0FF1FE0>
19 18 -1 17 22] 119 @dc
@F4 @sf
[<
01F00007FC000FFE001F0F003C0700380380700380700380F00000E00000E00000E00000E0
0000E00000E00000E00000F000007003807003803803803C07801F0F800FFF8007FB8001F1
80>
17 25 -2 24 22] 67 @dc
@F4 @sf
[<
03E0000FF8001FFC001E3C003C1E00780F00700700700700F00780E00380E00380E00380E0
0380E00380E00380E00380E00380700700700700780F00380E001E3C001FFC000FF80003E0
00>
17 25 -2 24 22] 48 @dc
15 @eop0
0 0 15 @bop1 262 307 a @F5 @sf(Sysdiag.)20 b @F9 @sf(Or)d @F4 @sf(diag)p
@F9 @sf(.)25 b(This)17 b(is)f(used)i(for)e(doing)g(hardw)o(are)h(main)o
(tenance)f(and)h(should)-1329 50 y(ha)o(v)o(e)d(a)g(passw)o(ord.)-411 78 y
@F5 @sf(Ro)q(ot.)20 b @F9 @sf(Or)11 b @F4 @sf(Rootsh)e @F9 @sf(or)h @F4 @sf
(rootcsh)f @F9 @sf(or)h @F4 @sf(toor)p @F9 @sf(.)16 b(All)9 b(to)h(often)h
(shipp)q(ed)g(without)f(a)g(passw)o(ord.)-1432 77 y @F5 @sf(Sync.)20 b
@F9 @sf(Used)g(to)f(protect)h(the)f(disks)g(when)h(doing)e(an)g(emergency)i
(sh)o(utdo)o(wn.)34 b(This)-1329 50 y(accoun)o(t)15 b(should)e(b)q(e)i
(restricted)h(from)d(\014le)h(transfer)h(and)e(other)i(net)f(uses.)-1294
78 y @F5 @sf(Finger.)20 b @F9 @sf(Or)d @F4 @sf(Who)g @F9 @sf(or)g @F4 @sf
(W)g @F9 @sf(or)g @F4 @sf(Date)g @F9 @sf(or)g @F4 @sf(Echo)p @F9 @sf(.)27 b
(All)17 b(of)f(these)j(ha)o(v)o(e)e(legitimate)f(uses)i(but)-1328 50 y
(need)d(to)f(b)q(e)g(set)h(up)f(to)g(b)q(e)g(prop)q(erly)h(captiv)o(e.)-785
78 y(Among)e(the)h(things)g(that)g(one)g(should)g(do)g(with)f(a)h(new)g
(unix)f(system)i(is)-1065 72 y @F4 @sf(grep)21 b(::)43 b(/etc/pass)o(wd)
-603 72 y @F9 @sf(to)13 b(see)i(what)e(unpassw)o(orded)i(accoun)o(ts)f
(exist)g(on)g(the)g(system.)19 b(All)12 b(of)h(these)j(are)e(w)o(orth)-1432
50 y(sp)q(ecial)g(atten)o(tion.)-312 106 y @F5 @sf(2.4.2)47 b(VMS)-253 76 y
@F9 @sf(Since)11 b(VMS)g(is)f(a)o(v)n(aila)o(ble)g(from)f(only)h(one)h(v)o
(endor,)g(the)h(default)e(accoun)o(t)h(here)h(are)f(b)q(etter)-1430 50 y
(kno)o(wn.)24 b(On)16 b(large)g(systems,)i(these)f(app)q(ear)g(with)f
(standard)g(w)o(ell)g(kno)o(wn)f(passw)o(ords.)-1431 50 y(On)f(smaller)f
(systems,)i(these)h(accoun)o(ts)f(app)q(ear)f(with)g(no)g(passw)o(ords)h
(at)f(all.)j(With)d(the)-1431 50 y(exception)j(of)f @F4 @sf(Decnet)p @F9 @sf
(,)g(all)g(ha)o(v)o(e)h(b)q(een)h(eliminated)e(on)h(systems)h(new)o(er)g
(than)e(v)o(ersion)-1431 49 y(4.6.)-66 73 y @F5 @sf(Decnet)-148 77 y
(System)-152 78 y(Systest)o -149 78 a(Field)-105 77 y(UETP)-72 73 y @F9 @sf
(Man)o(y)11 b(of)h(the)g(net)o(w)o(orking)g(and)g(mail)e(deliv)o(ery)i
(pac)o(k)n(ages)g(routinely)g(added)g(to)g(VMS)-1431 49 y(systems)k(also)f
(ha)o(v)o(e)h(w)o(ell)f(kno)o(w)g(passw)o(ord.)24 b(In)15 b(the)i(past)f
(six)f(mon)o(ths)h(these)h(accoun)o(ts)-1431 50 y(ha)o(v)o(e)c(b)q(een)i
(commonly)e(used)h(to)g(break)g(in)o(to)g(VMS)g(systems.)-994 73 y @F5 @sf
(MMPONY)-232 77 y(PLUTO)-168 72 y @F9 @sf(The)j(passw)o(ord)h(on)f(all)f
(of)h(these)h(accoun)o(ts)g(should)f(b)q(e)h(reset)q 18 x(when)g(a)f(new)h
(system)g(is)-1432 50 y(obtained.)33 b(There)20 b(are)g(man)o(y)e
(problems)h(with)g(the)h @F4 @sf(DECNET)e @F9 @sf(accoun)o(t)h(and)g(the)h
(with)-1432 50 y(the)15 b @F4 @sf(Task)21 b(0)14 b @F9 @sf(ob)r(ject.)21 b
(System)15 b(managers)g(should)f(obtain)g(one)h(of)f(the)h(standard)g
(repair)-1431 50 y(scripts)g(to)e(remo)o(v)o(e)h(these)i(vulnerabiliti)o
(es.)-698 106 y @F5 @sf(2.4.3)47 b(CMS)-251 76 y @F9 @sf(It)18 b(has)h(b)q
(een)g(man)o(y)f(y)o(ears)h(since)h(I)e(ha)o(v)o(e)g(seriously)h(used)g
(CMS.)g(A)o(t)f(last)g(glance)h(the)-1431 50 y(default)13 b(con\014guration)h
(seemed)h(to)e(include)h(w)o(ell)g(kno)o(w)f(passw)o(ords)i(for)e(t)o(w)o
(o)h(accoun)o(ts.)-1425 78 y @F5 @sf(rcsc)-81 78 y(op)q(erator)515 132 y
@F9 @sf(15)-999 b
15 @eop1
14 @bop0
@F4 @sf
[<
7F0000FF80007F00001C00001C00001C00001C00001C00001C00001C00001FF8001FFE001F
FF001C0F801C03801C03C01C01C01C01C01C01C01C03C01C03801C0F807FFF00FFFE007FF8
00>
18 25 -1 24 22] 80 @dc
14 @eop0
0 0 14 @bop1 262 307 a @F5 @sf(Sub)r(job)o(s.)20 b @F9 @sf(It)14 b(is)h
(often)g(the)g(case)h(that)f(a)f(restricte)q(d)i(accoun)o(t)f(is)g(set)g
(up)g(to)g(only)f(run)h(a)-1329 50 y(single)c(application.)16 b(This)11 b
(single)g(application)e(program)i(is)g(in)o(v)o(ok)o(ed)f(b)o(y)h(a)g
(startup)-1328 50 y(script)19 b(or)e(instead)h(of)f(the)h(standard)g
(command)f(in)o(terpreter.)31 b(V)m(ery)18 b(often)g(this)-1329 50 y
(program)c(has)g(an)f(option)g(to)h(spa)o(wn)g(a)g(subpro)q(cess.)-842 62 y
(In)i(some)f(cases)h(this)g(migh)o(t)e(b)q(e)i(an)f(arbitrary)g(job)g(\(e.)g
(g.)f(the)i @F4 @sf(/spawn)e @F9 @sf(option)h(to)-1329 50 y(Mail)d(in)h
(VMS)h(or)f(\\:!")k(to)c(vi)f(in)h(unix\))g(or)g(migh)o(t)f(b)q(e)i
(limited)e(to)h(a)g(small)f(n)o(um)o(b)q(er)-1328 50 y(of)k(programs.)24 b
(In)16 b(the)g(former)g(case)h(the)g(problem)e(is)h(immediate,)f(in)h(the)g
(latter)-1328 49 y(case,)c(it)e(is)g(often)h(the)g(case)g(that)f(one)h(of)f
(these)i(programs)e(in)g(turn)h(allo)n(ws)f(arbitrary)-1329 50 y(spa)o
(wning.)-180 63 y(A)15 b(carefully)f(written)h(subsystem)h(will)d(prev)o
(en)o(t)j(this)e(\(and)h(all)e(other)i(suc)o(h)h(prob-)-1329 49 y(lems\).)
25 b(Generally)15 b(these)i(subsyste)q(ms)g(are)f(create)q(d)h(quic)o(kly)e
(rather)i(than)f(care-)-1328 50 y(fully)m(.)-194 75 y @F5 @sf(Editors.)k
@F9 @sf(Most)c(editors)g(are)g(su\016cien)o(tly)g(p)q(o)o(w)o(erfully)f
(that)h(if)f(the)h(restricted)q 17 x(system)-1328 50 y(can)e(use)h(an)f
(editor,)f(a)h(w)o(a)o(y)f(can)h(b)q(e)h(found)e(to)h(cause)h(problems.)
-1146 75 y @F5 @sf(F)l(ull)h(Filenames.)k @F9 @sf(Man)o(y)10 b(restricte)q
(d)h(subsyste)q(ms)g(presume)h(that)e(b)o(y)g(resett)q(ing)h(the)g(set)-1328
50 y(of)k(places)h(the)g(command)f(in)o(terpreter)q 17 x(lo)q(oks)g(for)g
(executable)h(programs)g(\(called)-1329 50 y(its)g(\\searc)o(h)h(path"\))f
(functionalit)o(y)o 15 x(can)g(b)q(e)g(restricte)q(d.)25 b(In)16 b(unix)f
(this)h(migh)o(t)f(b)q(e)-1328 49 y(done)f(b)o(y)g(altering)f(the)i @F4 @sf
(Path)e @F9 @sf(v)n(ariable)g(or)h(the)g(logical)e(names)i(table)g(in)f
(VMS.)-1272 63 y(All)j(to)q(o)g(often)g(the)h(clev)o(er)g(attac)o(k)o(er)f
(is)g(able)g(to)h(defeat)f(this)g(plan)g(b)o(y)g(using)g(the)-1328 50 y
(complete)g(\014lename)f(of)g(the)h(\014le)f(of)g(in)o(terest.)24 b
(Sometimes)15 b(non-standard)g(names)-1328 49 y(for)f(the)g(\014le)g(are)g
(neces)q(sary)h(to)f(circum)o(v)o(en)o(t)g(a)g(clev)o(er)h(restriction)g
(program.)-1338 75 y @F5 @sf(Remo)o(v)m(able)g(Restriction)f(Files.)21 b
@F9 @sf(When)15 b(a)e(system)i(relies)f(on)g(an)f(initializati)o(on)g(\014le)
-1329 50 y(to)f(pro)o(vide)f(protection,)i(it)e(is)h(imp)q(ortan)o(t)f
(that)g(this)h(\014le)g(cannot)g(b)q(e)g(altered)g(or)g(re-)-1328 50 y(mo)o
(v)o(ed.)17 b(If)11 b(an)g(restrict)q(ed)i(application)d(is)i(able)f(to)g
(write)h(to)f(its)h(\\home)f(directory")-1328 50 y(where)k(these)h
(initial)o(izatio)o(n)d(\014les)h(are)g(k)o(ept)h(it)e(can)h(often)g(free)h
(itself.)-1218 75 y @F5 @sf(Non-stand)o(ard)f(Login.)20 b @F9 @sf(Some)c
(net)o(w)o(ork)g(access)q 17 x(metho)q(ds)h(do)f(not)g(read)g(or)g(resp)q
(e)q(ct)-1327 50 y(the)c(startup)g(\014les.)18 b(Among)10 b(these)j(are)f
(man)o(y)e(\014le)i(transfer)g(systems.)18 b(I)11 b(ha)o(v)o(e)h(often)-1329
49 y(b)q(een)h(able)e(to)g(gain)f(privileged)h(access)i(to)e(a)g(mac)o
(hine)g(b)o(y)g(using)g(the)h(the)g(login)e(and)-1329 50 y(passw)o(ord)k
(from)f(a)h(captiv)o(e)f(accoun)o(t)i(with)e(the)h(\014le)g(transfer)g
(facilit)o(y)e(that)i(didn't)-1329 50 y(kno)o(w)i(that)g(these)h(accoun)o
(ts)g(w)o(eren't)g(\\normal.)o(")23 b(Man)o(y)16 b(\014le)g(transfer)h
(faciliti)o(es)-1329 50 y(ha)o(v)o(e)d(metho)q(ds)g(for)g(disabling)e(the)j
(use)g(of)e(selected)j(accoun)o(ts.)-1118 75 y @F5 @sf(In)o(ter)o(rup)o
(ts.)j @F9 @sf(It)13 b(is)g(sad)g(that)g(a)f(n)o(um)o(b)q(er)h(of)g(the)g
(captiv)o(e)g(accoun)o(ts)h(w)o(on't)e(withstand)h(a)-1329 50 y(single)h
(in)o(terrupt)g(or)g(susp)q(end)i(c)o(haracter.)j(T)m(ry)14 b(it)f(just)h
(to)g(b)q(e)h(sure.)-1135 71 y(Making)f(sure)i(that)f(y)o(ou)f(ha)o(v)o(e)h
(not)f(made)h(an)o(y)f(of)h(the)g(ab)q(o)o(v)o(e)g(listed)g(mistak)o(es)f
(is)h(of)-1432 50 y(course)d(not)e(su\016cien)o(t)h(for)g(ha)o(ving)f(a)g
(p)q(erfectly)i(safe)f(system.)18 b(Av)o(oiding)9 b(these)j(mistak)o(es,)
-1432 49 y(or)i(a)o(v)o(oiding)f(the)i(use)g(of)f(captiv)o(e)h(accoun)o
(ts)g(at)g(all,)e(is)h(enough)h(to)g(discourage)g(the)g(v)n(ast)-1432 50 y
(ma)r(jorit)o(y)d(of)h(attac)o(k)o(ers.)-328 50 y(Eac)o(h)f(op)q(erating)h
(system)g(for)f(eac)o(h)h(v)o(endor)g(has)f(some)h(particular)f(default)g
(accoun)o(ts)-1431 50 y(that)h(need)i(to)f(b)q(e)h(disabled)e(or)h
(otherwise)h(protected.)-872 104 y @F5 @sf(2.4.1)47 b(Unix)-247 77 y @F9 @sf
(Under)14 b(unix)g(there)h(are)f(a)g(lot)f(of)h(p)q(ossible)g(default)f
(accoun)o(ts)i(since)g(there)g(are)f(so)g(man)o(y)-1432 50 y(di\013eren)o
(t)19 b(v)o(endors.)32 b(Belo)o(w)19 b(is)f(a)g(partial)g(list)g(of)f(the)i
(default)g(accoun)o(ts)g(that)f(I)h(ha)o(v)o(e)-1432 50 y(success)q(fully)
14 b(used)g(in)g(the)g(past)g(that)g(are)h(not)e(men)o(tioned)h(ab)q(o)o
(v)o(e.)-382 124 y(14)-999 b
14 @eop1
13 @bop0
@F2 @sf
[<
7FF8007FF8000F80000F80000F80000F80000F80000F80000F80000F80000F80000F80000F
80000F80000F80000F80000F80000F80000F80000F8000FFFC00FFFC000F80000F80000F80
000F80000F80000F80000F83C00F87E007C7E003C7E001E3E000FFC0003F80>
19 35 -1 34 17] 102 @dc
[<
0007FC0000003FFF800000FC07E00003F001F80007E000FC000FC0007E001F80003F003F80
003F803F00001F807F00001FC07F00001FC07E00000FC0FE00000FE0FE00000FE0FE00000F
E0FE00000FE0FE00000FE0FE00000FE0FE00000FE0FE00000FE0FE00000FE07E00000FC07E
00000FC07F00001FC03F00001F803F00001F801F80003F001F80003F000FC0007E0007E000
FC0003F001F80000FC07E000003FFF80000007FC0000>
35 34 -3 33 42] 79 @dc
[<
1F807FE078F8FC7CFC3CFC3E783E003E003E003E003E003E003E003E003E003E003E003E00
3E003E003E003E003E003E003E003E003E003E003E003E03FE03FE00000000000000000000
000000000038007C00FE00FE00FE007C0038>
15 46 3 35 17] 106 @dc
@F5 @sf
[<
000FF818007FFE7801FC07F807E001F80F8001F81F0001F83F0001F83E0001F87E0001F87C
0001F8FC007FFFFC007FFFFC000000FC000000FC000000FC000000FC000000FC0000007C00
00187E0000183E0000383F0000381F0000780F80007807E001F801FC07F8007FFE38000FF0
08>
32 28 -3 27 38] 71 @dc
@F4 @sf
[<
3FFE007FFF003FFE0001C00001C00001C00001C00001C00001C00001C00001C00001C00001
C00001C00001C000FFFF00FFFF007FFF0001C00001C00001C30001E78000FF80007F80001F
00>
17 25 -1 24 22] 102 @dc
@F4 @sf
[<
063C000EFF000FFF800F83C00F01E00E00E00E00700E00700E00700E00700E00700E00700E
00E00F00E00F83C00FFF800EFF000E3E000E00000E00000E00000E00007E0000FE00007E00
00>
20 25 0 24 22] 98 @dc
13 @eop0
0 0 13 @bop1 262 307 a @F9 @sf(is)13 b(near)i(expiration.)-268 50 y(Also)f
(VMS)g(securit)o(y)h(auditing)e(mak)o(es)h(the)g(remo)o(v)n(al)f(of)g
(expired)i(users)h(a)d(bad)h(idea.)-1432 50 y(Because)f(one)f(of)f(the)h
(most)g(common)e(errors)j(is)f(t)o(yping)f(the)h(passw)o(ord)g(on)f(the)i
(username)-1431 50 y(line,)j(DEC)g(suppres)q(ses)q 18 x(an)o(y)g(in)o(v)n
(ali)o(d)g(username)h(from)f(the)h(logs)f(un)o(til)g(a)g(breaking)h(at-)
-1432 49 y(tempt)f(is)h(detecte)q(d.)27 b(But)18 b(if)d(the)j(username)f
(is)g(v)n(alid)e(and)h(the)h(passw)o(ord)g(wrong,)g(the)-1431 50 y
(username)d(is)g(logged.)-354 116 y @F2 @sf(2.4)55 b(Default)18 b(Accoun)n
(ts)i(and)f(Ob)s(jects)-867 77 y @F9 @sf(One)12 b(of)f(the)h(jo)o(ys)f(of)g
(man)o(y)g(op)q(erating)h(systems)g(is)g(that)g(they)g(come)g(complete)g
(with)f(pre-)-1431 50 y(built)i(accoun)o(ts)j(and)e(other)h(ob)r(jects.)
21 b(Man)o(y)14 b(op)q(erating)h(systems)h(ha)o(v)o(e)e(enabled)h(either)
-1431 50 y(accoun)o(ts)f(or)g(prelogin)f(facilities)g(that)h(presen)o(t)i
(securit)o(y)e(risks.)-963 49 y(The)i(standard)h(\\accoun)o(ts")f(for)g
(an)f(attac)o(k)o(er)i(to)f(try)g(on)g(an)o(y)f(system)i(include)f(the)-1431
50 y(follo)o -1 x(wing)o(:)-174 92 y @F5 @sf(Op)q(en.)k @F9 @sf(A)10 b
(facilit)o(y)e(to)i(automatically)e(create)k(new)f(accoun)o(ts.)17 b(It)
11 b(is)f(often)g(set)h(b)o(y)f(default)-1329 49 y(to)i(not)g(require)h
(either)f(a)g(passw)o(ord)g(or)g(system)h(manager)e(appro)o(v)n(al)g(to)h
(create)h(the)-1328 50 y(new)i(accoun)o(ts.)-356 83 y @F5 @sf(Help.)21 b
@F9 @sf(Sometimes)12 b(the)i(pre-login)e(help)h(is)g(to)q(o)g(helpful.)k
(It)c(ma)o(y)f(pro)o(vide)h(phone)g(n)o(um-)-1329 50 y(b)q(ers)e(or)f
(other)g(information)e(that)h(y)o(ou)h(w)o(ouldn't)e(w)o(an)o(t)h(to)h
(adv)o(ertise)g(to)g(non-users.)-1431 83 y @F5 @sf(T)l(elnet.)20 b @F9 @sf
(Or)10 b(T)m(erminal.)16 b(An)10 b(accoun)o(t)h(designed)g(to)f(let)g
(someone)g(just)h(use)g(this)f(mac)o(hine)-1329 50 y(as)g(a)g(stepping)h
(stone)g(to)f(get)g(to)g(another)h(mac)o(hine.)16 b(It)10 b(is)g(useful)g
(for)g(hiding)f(origins)-1329 50 y(of)14 b(an)f(attac)o(k.)-333 83 y @F5 @sf
(Guest)o(.)20 b @F9 @sf(Man)o(y)13 b(op)q(erating)h(systems)h(are)f(shipp)q
(ed)h(with)f(guest)g(accoun)o(ts)h(enabled.)-1359 83 y @F5 @sf(Demo.)20 b
@F9 @sf(Not)15 b(only)f(are)i(sev)o(eral)g(op)q(erating)f(systems)h(shipp)q
(ed)g(with)f(a)g(demo)g(accoun)o(t,)-1329 50 y(but)g(when)g(installing)e
(some)i(pac)o(k)n(ages,)f(a)h(demo)f(accoun)o(t)i(is)e(automatically)o 14 x
(cre-)-1328 49 y(ated.)34 b(All)18 b(to)q(o)h(often)g(the)g(demo)g(accoun)o
(t)h(has)f(write)g(access)i(to)e(some)g(of)f(the)-1328 50 y(system)d
(binaries)f(\(executable)h(\014les\).)-713 83 y @F5 @sf(Games.)20 b @F9 @sf
(Or)11 b(Pla)o(y)m(.)16 b(Often)11 b(the)h(passw)o(ord)f(is)g(Games)g
(when)g(the)g(accoun)o(t)h(name)f(is)f(Pla)o(y)m(.)-1330 50 y(In)j(some)f
(cases)i(this)e(accoun)o(t)h(has)g(the)g(abilit)o(y)d(to)j(write)f(to)h
(the)g(Games)f(directory)-1328 50 y(allo)o(wing)j(an)i(attac)o(k)o(er)h
(to)f(not)g(only)f(pla)o(y)g(games,)i(and)f(sno)q(op)g(around,)g(but)h(to)
-1329 50 y(also)c(insert)g(T)m(ro)r(jan)f(horses)i(at)f(will.)-692 83 y
@F5 @sf(Mail.)22 b @F9 @sf(Quite)15 b(often)h(a)f(system)h(is)f(shipp)q
(ed)h(with)f(or)g(is)g(giv)o(en)g(an)g(unpassw)o(orded)h(mail)-1330 49 y
(accoun)o(t)g(so)f(that)g(p)q(eople)h(can)f(rep)q(ort)i(problems)e(\(lik)o
(e)f(their)i(inabili)o(t)o(y)e(to)h(login\))-1330 50 y(without)d(logging)o
11 x(in.)17 b(In)11 b(t)o(w)o(o-thirds)h(of)f(the)i(systems)g(that)f(I)f
(ha)o(v)o(e)h(observ)o(ed)h(with)-1329 50 y(suc)o(h)k(an)f(accoun)o(t,)h
(it)f(w)o(as)g(p)q(ossible)h(to)f(break)h(in)o(to)e(the)i(main)e(system)j
(through)-1329 50 y(this)c(accoun)o(t.)-273 91 y(Often)h(these)i(default)d
(accoun)o(ts)i(are)f(normal)f(accoun)o(ts)i(with)f(an)f(initiali)o(zation)g
(\014le)-1432 50 y(\()p @F4 @sf(.login)p @F9 @sf(,)o 17 x @F4 @sf
(.profile)p @F9 @sf(,)o 17 x @F4 @sf(login.cmd)p @F9 @sf(,)o 17 x @F4 @sf
(login.bat)p @F9 @sf(,)o 17 x(etc.\))29 b(or)18 b(alternate)f(command)g
(line)-1432 50 y(in)o(terpreter)f(to)f(mak)o(e)g(it)g(do)f(something)h
(non-standard)g(or)g(restrict)q 16 x(its)g(action.)21 b(These)-1430 50 y
(are)d(generally)g(called,)g(\\Captiv)o(e)g(Accoun)o(ts")h(or)f(\\T)m
(urnk)o(ey)g(Logins.")30 b(Setting)19 b(up)f(a)-1432 49 y(restricted)g
(login)c(so)i(that)g(it)g(sta)o(ys)g(restrict)q(ed)i(is)d(v)o(ery)i(hard.)
24 b(It)16 b(should)g(of)g(course)h(b)q(e)-1431 50 y(v)o(ery)d(easy)m(,)f
(but)h(in)g(most)f(cases)j(a)d(mistak)o(e)h(is)f(made.)-163 165 y(13)-999 b
13 @eop1
12 @bop0
@F5 @sf
[<
0FE0001FF800383C00780F007C07007C07803807C00003C00003C00003E003E3E00E1BE03C
0BE03807E07807E0F803E0F803E0F803E0F803E0F803C0F803C07803C07807803C07801E0F
000FFE0003F800>
19 27 -2 26 24] 57 @dc
@F5 @sf
[<
03F8000F1E001C07003C07803803807803C07803C0F803E0F803E0F803E0F803E0F803E0F8
03E0F803E0F803E0F803E0F803E0F803E0F803E07803C07803C07803C03803803C07801C07
000F1E0003F800>
19 27 -2 26 24] 48 @dc
12 @eop0
0 0 12 @bop1 262 307 a @F5 @sf(2.1.9)47 b(The)16 b(T)l(ruth)e(ab)q(out)h
(P)o(assw)o(ord)f(Aging)-850 77 y @F9 @sf(Some)i(facilities)g(force)h
(users)h(to)e(c)o(hange)h(their)g(passw)o(ords)h(on)e(a)h(regular)f
(basis.)27 b(This)-1432 50 y(has)15 b(the)g(b)q(ene\014cial)g(side)g(e\013ec)q
(t)h(of)e(remo)o(ving)g(dorman)o(t)g(accoun)o(ts.)22 b(It)15 b(is)g(also)f
(the)i(case)-1431 49 y(that)d(it)h(limits)e(the)j(utilit)o(y)e(of)g(a)g
(stolen)i(passw)o(ord.)-760 50 y(While)i(these)i(are)g(go)q(o)q(d)e(and)h
(w)o(orth)o(while)g(e\013ects,)i(most)e(system)h(administrators)-1432 50 y
(b)q(eliev)o(e)d(that)g(c)o(hanging)g(passw)o(ords)h(on)f(a)g(regular)g
(basis)g(mak)o(es)g(it)g(harder)h(for)f(an)g(at-)-1432 50 y(tac)o(k)o(er)c
(to)g(guess)i(them.)j(In)12 b(practice,)i(for)d(an)h(attac)o(k)o(er)h
(that)f(has)h(gotten)f(the)h(crypt)g(text)-1431 50 y(of)g(the)j(passw)o
(ord)f(\014le,)f(he)h(generally)f(only)g(needs)i(a)e(few)h(hours)g(to)f
(\014nd)h(the)g(passw)o(ords)-1431 49 y(of)d(in)o(terest)j(and)e(hence)h
(frequen)o(t)g(c)o(hanges)g(do)f(not)g(increase)i(the)f(di\016cult)o(y)e
(of)h(his)g(task.)-1432 50 y(F)m(or)g(the)i(attac)o(k)o(er)g(who)f(is)g
(guessing)h(without)e(a)h(cop)o(y)h(of)e(the)i(encrypt)h(passw)o(ord,)e
(ev)o(en)-1431 50 y(c)o(hanging)f(the)i(passw)o(ord)g(ev)o(ery)g(min)o
(ute)g(w)o(ould)e(at)h(most)h(double)f(the)h(e\013ort)g(he)g(w)o(ould)-1432
50 y(b)q(e)f(required)h(to)f(exp)q(end.)-410 108 y @F5 @sf(2.1.10)47 b(Ho)o
(w)17 b(do)e(y)o(ou)g(c)o(hange)g(a)h(passw)o(ord)-825 76 y @F9 @sf(Users)h
(should)f(b)q(e)g(told)g(to)g(c)o(hange)g(their)h(passw)o(ords)f(whenev)o
(er)i(they)e(ha)o(v)o(e)g(reason)h(to)-1432 50 y(exp)q(ect)h(that)f
(another)g(p)q(erson)g(has)g(learned)g(their)h(passw)o(ords)f(and)g(after)f
(eac)o(h)i(use)f(of)-1432 50 y(an)f(\\un)o(trusted")h(mac)o(hine.)26 b
(Unfortunately)16 b(man)o(y)g(users)i(are)f(neither)g(told)f(this,)h(nor)
-1432 50 y(ho)o(w)11 b(to)i(c)o(hange)f(the)h(passw)o(ord.)18 b(Be)13 b
(sure)h(b)q(oth)e(to)h(tell)f(y)o(ou)f(users)j(ho)o(w)e(to)g(c)o(hange)h
(their)-1431 50 y(passw)o(ords)19 b(and)f(include)h(these)h(instructions)g
(in)e(the)h(on-line)f(do)q(cumen)o(tation)h(in)f(an)-1432 49 y(ob)o(vious)
11 b(place.)17 b(Users)q 13 x(should)12 b(not)g(b)q(e)h(exp)q(ected)h(to)e
(realize)g(the)h(passw)o(ord)f(c)o(hanging)g(is)-1432 50 y(\(1\))j(an)f
(option)h(for)f(directory)i(main)o(tenance)f(under)h(TOPS-20)f(and)g(man)o
(y)f(v)o(ersions)h(of)-1432 50 y(CMS,)e(\(2\))h(is)g(sp)q(elled)g @F4 @sf
(passwd)f @F9 @sf(under)h(unix)g(or)g(\(3\))f(is)h(an)g(option)f(to)h
@F4 @sf(set)f @F9 @sf(under)i(VMS.)-1416 116 y @F2 @sf(2.2)55 b(Old)19 b
(P)n(assw)n(ord)h(Files)-597 77 y @F9 @sf(It)14 b(is)g(often)g(the)h(case)g
(at)f(sites)h(running)f(shado)o(w)g(passw)o(ord)h(systems,)g(someone)f
(forgets)-1431 50 y(to)f(prev)o(en)o(t)i(the)f(shado)o(w)f(passw)o(ord)h
(\014le)g(from)f(b)q(eing)g(publically)f(readable.)19 b(While)13 b(this)
-1432 50 y(is)e(easy)i(to)f(prev)o(en)o(t)g(b)o(y)g(ha)o(ving)f(a)h(batc)o
(h)g(job)f(that)h(routinely)g(rev)o(ok)o(es)h(read)f(p)q(ermissions)-1431
49 y(that)f(w)o(ere)h(acciden)o(tly)g(gran)o(ted,)g(there)g(is)g(an)f(in)o
(teresting)h(v)n(arian)o(t)e(of)h(this)g(problem)h(that)-1432 50 y(is)h
(harder)i(to)f(prev)o(en)o(t.)-308 50 y(When)20 b(passw)o(ord)g(\014les)g
(are)g(edited,)i(some)e(editors)g(lea)o(v)o(e)f(bac)o(kup)h(\014les)g
(that)g(are)-1431 50 y(publically)o 16 x(readable.)27 b(In)16 b(fact)h
(when)g(a)g(new)g(system)h(is)e(installed)g(a)h(passw)o(ord)g(\014le)g(is)
-1432 50 y(often)11 b(created)h(b)o(y)f(extracting)h(informatio)o(n)e
(from)g(the)i(passw)o(ord)g(\014les)f(of)g(man)o(y)f(existing)-1432 49 y
(systems.)18 b(The)c(collection)e(of)h(passw)o(ord)g(\014les)h(is)f(all)e
(to)q(o)i(often)g(left)g(publically)e(readable)-1431 50 y(in)k(some)h
(forgotten)g(disk)f(area)h(where)h(it)f(is)f(found)h(b)o(y)f(an)h(attac)o
(k)o(er)g(w)o(eeks)h(or)f(mon)o(ths)-1432 50 y(later.)g(The)11 b(attac)o
(k)o(er)g(then)h(uses)f(this)g(data)f(to)g(break)h(in)o(to)f(a)g(large)g
(n)o(um)o(b)q(er)h(of)f(mac)o(hines.)-1432 116 y @F2 @sf(2.3)55 b(Dorman)n
(t)19 b(Accoun)n(ts)-589 77 y @F9 @sf(While)14 b(requiring)h(ann)o(ual)f
(passw)o(ord)i(c)o(hanges)g(do)q(es)g(ev)o(en)o(tually)f(remo)o(v)o(e)g
(dorman)o(t)g(ac-)-1432 50 y(coun)o(ts,)h(it)g(is)g(w)o(orth)o(while)f(to)h
(try)h(a)e(more)h(activ)o(e)h(approac)o(h)f(for)f(their)i(remo)o(v)n(al.)
23 b(The)-1431 49 y(exact)14 b(nature)h(of)e(this)h(approac)o(h)g(will)e
(v)n(ary)h(from)h(cen)o(ter)h(to)f(cen)o(ter.)-1111 108 y @F5 @sf(2.3.1)
47 b(VMS)-253 77 y @F9 @sf(In)19 b(VMS,)h(the)h(accoun)o(t)f(expiration)g
(\014eld)g(is)f(a)h(go)q(o)q(d)g(metho)q(d)g(of)f(retiring)h(dorman)o(t)
-1432 50 y(accoun)o(ts,)11 b(but)h(care)f(should)g(b)q(e)h(tak)o(en)f(as)g
(no)g(adv)n(ance)g(notice)g(is)g(giv)o(en)f(that)h(an)g(accoun)o(t)-736
157 y(12)-999 b
12 @eop1
11 @bop0
@F5 @sf
[<
03F8001FFE003E07807803807801C0F001E0F001E0F001E0F003E0F007E0781FE0387FC01D
FF8007FF800FFE001FFC003FFE007FC7007F83807E03C07803C07803C03803C03807801E0F
800FFE0003F800>
19 27 -2 26 24] 56 @dc
[<
07800FC00FC00FC00FC007800000000000000000030003000300030003000180018001C000
E00070003C003E701FF81FF81FF01F601E303C0FF0>
16 29 -3 28 23] 63 @dc
11 @eop0
0 0 11 @bop1 262 307 a @F9 @sf(generated)14 b(passw)o(ords,)f(y)o(ou)f
(should)h(consider)g(running)g(an)f(o)q(ccasional)g(sw)o(eep)i(o)o(v)o(er)f
(the)-1431 50 y(en)o(tire)k(user)h(\014le)f(system)h(lo)q(oking)e(for)g
(scripts)j(con)o(taining)d(these)i(passw)o(ords.)28 b(Prop)q(er)-1430 50 y
(selection)12 b(of)f(y)o(our)g(passw)o(ord)h(generation)g(algorithm)e(can)i
(mak)o(e)f(this)h(m)o(uc)o(h)f(easier)i(than)-1432 50 y(it)g(sounds.)-113
49 y(As)d(with)f(almost)g(all)f(passw)o(ord)i(issues,)h(the)g(user)f(of)f
(a)h(single)f(computer)h(cen)o(ter)q 11 x(whic)o(h)-1432 50 y(giv)o(es)h
(him)g(one)i(mac)o(hine)e(generated)j(passw)o(ord)e(for)g(access)h(to)f
(all)f(the)i(mac)o(hines)f(he)g(will)-1433 50 y(use)k(will)f(not)g(ha)o(v)o
(e)h(nearly)g(the)g(lev)o(el)g(of)f(di\016cult)o(y)g(as)h(the)g(user)h
(who)e(uses)i(computers)-1430 50 y(at)c(man)o(y)h(cen)o(ters)i(and)e(migh)o
(t)f(ha)o(v)o(e)h(to)g(remem)o(b)q(er)h(dozens)g(or)f(ev)o(en)h(h)o
(undreds)g(of)f(suc)o(h)-1431 50 y(passw)o(ords.)-193 108 y @F5 @sf(2.1.7)
47 b(The)16 b(Sorro)o(ws)e(of)i(Sp)q(ecial)g(Purp)q(ose)e(Hardw)o(are)-1034
76 y @F9 @sf(With)g(the)i(problems)f(of)f(broadcast)i(net)o(w)o(orks)g
(and)f(user)h(selecting)g(bad)f(passw)o(ords)h(or)-1432 50 y(reb)q(elling)d
(at)h(mac)o(hine)g(generated)h(passw)o(ord,)f(some)g(facilities)f(ha)o(v)o
(e)h(turned)h(to)e(sp)q(ecial)-1431 50 y(purp)q(ose)e(hardw)o(are)g(that)g
(generates)h(k)o(eys)f(dynamically)l(.)16 b(Generally)10 b(these)i
(devices)g(lo)q(ok)-1433 50 y(lik)o(e)h(small)g(calculators)i(\(or)f
(smart)h(card\))g(and)f(when)h(a)f(user)h(en)o(ters)h(a)e(short)h(passw)o
(ord)-1431 49 y(\(often)e(four)f(digits\))h(they)g(giv)o(e)g(him)f(a)g
(passw)o(ord)i(that)f(is)f(go)q(o)q(d)h(for)g(a)f(single)h(use.)18 b(If)
13 b(the)-1431 50 y(p)q(erson)e(w)o(an)o(ts)g(to)g(login)e(again,)h(he)h
(m)o(ust)g(get)g(a)f(new)h(passw)o(ord)h(from)e(his)g(k)o(ey-generator.)
-1369 50 y(With)i(a)g(few)g(exceptions,)i(the)f(tec)o(hnology)f(of)g
(these)h(devices)h(w)o(orks)f(v)o(ery)f(w)o(ell.)17 b(The)-1431 50 y
(exceptions)d(include)g(systems)h(with)f(bad)g(time)f(sync)o(hronization,)g
(unreliable)h(or)g(fragile)-1433 50 y(hardw)o(are)g(or)g(v)o(ery)h(short)f
(generated)i(k)o(eys.)j(In)14 b(at)g(least)g(one)h(case)g(the)g(generated)g
(k)o(eys)-1431 49 y(w)o(ere)e(so)g(short)g(that)g(it)f(w)o(as)h(faster)g
(to)f(attac)o(k)h(the)g(mac)o(hine)g(b)o(y)f(guessing)h(the)g(passw)o(ord)
-1431 50 y(\\1111")f(than)i(b)o(y)f(guessing)i(at)e(the)i(user)g
(generated)g(passw)o(ords)g(it)e(replaced.)-1192 50 y(Despite)19 b(the)h
(tec)o(hnology)e(of)g(these)j(devices)e(w)o(orking)f(w)o(ell)g(and)h(the)g
(installation)-1433 50 y(generally)14 b(b)q(eing)h(almost)f(painless,)h
(there)h(are)f(t)o(w)o(o)g(serious)g(problems)g(with)g(their)g(use.)-1431
50 y(The)e(\014rst)h(is)f(cost.)19 b(Buying)12 b(a)h(device)h(for)f(a)g
(user)h(of)f(large)g(cen)o(ter)i(can)e(easily)g(cost)h(more)-1432 50 y
(than)e(an)f(additional)g(mainfram)o(e.)17 b(The)12 b(second)h(problem)f
(is)g(more)g(serious.)18 b(This)12 b(is)g(one)-1431 49 y(of)j(user)j
(reluctance.)27 b(Most)16 b(users)q 17 x(are)h(un)o(willing)d(to)j(carry)g
(an)f(extra)h(device)g(and)f(the)-1431 50 y(p)q(eople)d(who)g(are)h(users)h
(of)d(man)o(y)h(cen)o(ters)i(are)f(ev)o(en)g(less)g(willi)o(ng)e(to)h
(hold)g(a)g(dozen)h(suc)o(h)-1431 50 y(devices)h(and)e(remem)o(b)q(er)i
(whic)o(h)f(is)g(whic)o(h.)-632 50 y(In)h(one)g(cen)o(ter,)i(these)f
(devices)g(w)o(ere)g(used)g(only)e(for)h(privileged)g(accesse)q(s)h
(initiated)-1432 50 y(from)d(insecure)i(lo)q(cations.)j(Only)c(a)g
(handful)f(of)g(them)h(had)g(to)g(b)q(e)h(made.)j(\(Being)c(inno-)-1432
49 y(v)n(ativ)o(e,)h(the)j(cen)o(ter)g(sta\013)f(built)e(them)i(from)f
(old)g(programmable)f(calculators.\))26 b(They)-1431 50 y(w)o(ere)12 b
(used)h(only)e(b)o(y)h(the)h(\\on)e(call")g(system)i(programmer)f(when)g
(handling)f(emergencies)-1430 50 y(and)i(pro)o(vided)h(some)g(securit)o(y)h
(without)e(b)q(eing)h(to)g(obtrusiv)o(e.)-1005 108 y @F5 @sf(2.1.8)47 b
(Is)16 b(W)l(riting)g(P)o(assw)o(ords)o 15 x(Do)o(wn)f(that)g(Bad?)-951
77 y @F9 @sf(One)d(of)g(the)g(\014rst)h(things)f(that)g(w)o(e)g(w)o(ere)h
(all)e(told)h(when)g(w)o(e)g(b)q(egan)g(using)g(timesharing)g(is)-1432 49 y
(that)i(one)g(should)f(nev)o(er)i(write)g(do)o(wn)e(passw)o(ords.)19 b(I)
14 b(agree)h(that)f(the)g(users)i(should)e(not)-1432 50 y(record)k(their)g
(passw)o(ords)g(on-line.)27 b(There)19 b(ha)o(v)o(e)e(b)q(een)h(a)f(large)g
(n)o(um)o(b)q(er)h(of)e(break-ins)-1431 50 y(enable)c(b)o(y)h(a)f(user)i
(ha)o(ving)e(a)g(batc)o(h)h(script)h(that)e(w)o(ould)g(include)h(a)g
(clear-text)g(passw)o(ord)-1431 50 y(to)g(let)h(them)g(login)f(to)g
(another)i(mac)o(hine.)-620 50 y(On)f(the)h(other)g(hand,)f(ho)o(w)f
(often)i(has)f(y)o(our)g(w)o(allet)f(b)q(een)j(stolen?)j(I)14 b(b)q(eliev)o
(e)h(that)f(a)-1432 49 y(passw)o(ord)e(written)i(do)o(wn)e(in)g(w)o(allet)g
(is)g(probably)g(not)g(a)h(serious)g(risk)g(in)f(comparison)g(to)-1432 50 y
(other)j(the)g(problems)g(including)e(the)j(selection)f(of)f(\\dum)o(b")g
(passw)o(ord)h(that)g(are)g(easier)-1431 50 y(to)e(remem)o(b)q(er.)19 b
(In)14 b(classi\014ed)h(systems,)f(this)g(is,)f(of)h(course,)g(not)g(p)q
(ermitted.)-540 221 y(11)-999 b
11 @eop1
10 @bop0
@F9 @sf
[<
FFFFFFFFFF80>
41 1 0 11 42] 124 @dc
10 @eop0
0 0 10 @bop1 365 307 a @F9 @sf(six)14 b(c)o(haracter)h(passw)o
(ord,)f(this)g(giv)o(es)g(ab)q(out)g(40)f(bits)h(of)g(randomness.)k(It)c
(is)g(v)o(ery)-1328 50 y(hard)g(to)g(guess)h(and)f(p)q(erhaps)h(ev)o(en)f
(harder)h(to)f(remem)o(b)q(er.)-962 64 y(Often)h(a)f(little)f(bit)h(of)f
(p)q(ost)i(pro)q(cessing)g(is)f(done)g(on)g(these)h(passw)o(ords)g(as)f(w)o
(ell)f(as)-1328 49 y(on)k(the)h(random)f(syllables)f(discusse)q(d)i(b)q
(elo)o(w.)28 b(This)17 b(p)q(ost)h(pro)q(cessing)g(remo)o(v)o(es)-1328 50 y
(passw)o(ords)j(that)e(migh)o(t)g(pro)o(v)o(e)g(o\013ensiv)o(e)h(to)g(the)g
(user.)36 b(When)20 b(a)f(p)q(oten)o(tially)-1330 50 y(o\013ensiv)o(e)14 b
(passw)o(ord)f(is)f(generated,)i(the)g(program)e(simply)f(tries)j(again.)i
(The)d(user)-1327 50 y(often)h(b)q(eha)o(v)o(es)g(the)f(same)h(w)o(a)o(y)e
(and)h(runs)h(the)g(randomizer)f(o)o(v)o(er)h(and)f(o)o(v)o(er)g(again)-1330
50 y(un)o(til)i(a)g(passw)o(ord)h(that)g(seems)h(less)f(random)f(and)h
(more)f(memorable)g(to)h(him)f(is)-1329 50 y(selecte)q(d.)33 b(In)18 b
(principle,)h(the)g(clev)o(er)g(user)h(could)e(write)h(a)f(program)g(that)g
(k)o(ept)-1328 49 y(requesting)g(new)f(random)f(passw)o(ords)h(un)o(til)e
(an)i(English)f(w)o(ord)g(w)o(as)g(c)o(hosen)i(for)-1329 50 y(him;)13 b
(this)h(w)o(ould)f(tak)o(e)h(m)o(uc)o(h)f(to)q(o)h(long)f(to)h(b)q(e)g
(practical.)-1039 78 y @F5 @sf(Num)o(b)q(ers.)19 b @F9 @sf(Num)o(b)q(ers)
14 b(are)g(a)e(lot)h(lik)o(e)f(letters.)19 b(P)o(eople)14 b(don't)e(try)h
(to)g(pronounce)h(them)-1328 50 y(and)e(there)i(are)e(v)o(ery)h(few)f(n)o
(um)o(b)q(ers)h(that)f(are)h(\\o\013ensiv)o(e")f(p)q(er)h(se.)18 b(An)13 b
(eigh)o(t)f(digit)-1330 49 y(random)e(n)o(um)o(b)q(er)h(has)f(ab)q(out)h
(26)e(bits)i(of)f(randomness)h(in)f(it)g(and)g(is)g(of)g(comparable)-1329
50 y(strength)17 b(to)d(a)h(4)g(c)o(haracter)h(random)f(passw)o(ord)g(c)o
(hosen)h(from)f(the)g(unrestrict)q(ed)-1327 50 y(set)k(of)f(prin)o(table)g
(c)o(haracters.)32 b(\(The)19 b(amoun)o(t)e(of)h(randomness)h(in)e(a)h
(passw)o(ord)-1328 50 y(is)g(the)f(log)g(\(base)h(2\))f(of)g(the)h(n)o(um)o
(b)q(er)g(of)e(p)q(ossible)i(passw)o(ords)g(if)f(they)g(w)o(ere)i(all)-1330
50 y(equally)13 b(lik)o(ely)g(to)h(o)q(ccur.\))-429 63 y(Eigh)o(t)e(digit)g
(n)o(um)o(b)q(ers)h(are)g(hard)g(to)f(remem)o(b)q(er.)19 b(F)m(ortunately)
12 b(\\c)o(h)o(unking")f(them)-1328 50 y(in)o(to)20 b(groups)g(\(as)h
(184|25)o(|75)o(46\))e(mak)o(es)h(this)g(less)h(di\016cult)e(than)i(it)e
(w)o(ould)-1329 50 y(otherwise)c(b)q(e.)-342 78 y @F5 @sf(Syllables.)20 b
@F9 @sf(This)c(is)f(b)o(y)g(far)g(the)h(most)g(common)e(metho)q(d)i
(curren)o(tly)g(used.)24 b(The)16 b(idea)-1329 49 y(is)e(to)g(mak)o(e)g
(non-w)o(ords)g(that)g(are)h(easy)f(to)g(remem)o(b)q(er)h(b)q(ecause)q 15 x
(they)g(sound)f(lik)o(e)-1329 50 y(w)o(ords.)22 b(A)15 b(three)i
(syllable,)d(eigh)o(t)h(letter)h(non-w)o(ord)e(often)h(has)h(ab)q(out)e
(24)h(bits)g(of)-1329 50 y(randomness)j(in)f(it)g(making)e(it)i(not)g
(quite)g(as)h(strong)f(as)g(an)g(8)g(bit)g(n)o(um)o(b)q(er)g(but)-1328 50 y
(hop)q(efully)c(a)h(little)f(bit)h(more)g(memorable.)-695 63 y(The)k
(principle)g(here)g(is)g(go)q(o)q(d.)28 b(In)18 b(fact,)g(this)f(pseudo-w)o
(ord)h(idea)g(should)f(w)o(ork)-1329 50 y(v)o(ery)c(w)o(ell.)j(In)c
(practice)h(it)f(fails)f(miserably)g(b)q(ecause)q 13 x(the)i(standard)f
(programs)g(for)-1329 50 y(generating)k(these)g(pseudo-syllables)f(are)h
(v)o(ery)f(p)q(o)q(or.)22 b(Ev)o(en)o(tually)14 b(w)o(e)h(ma)o(y)f(\014nd)
-1328 50 y(a)g(go)q(o)q(d)f(implemen)o(tation)g(of)g(this)h(and)g(see)h(a)e
(higher)h(lev)o(el)g(of)f(user)i(acceptance)q(.)-1410 77 y @F5 @sf(P)o
(ass)g(Phrases.)k @F9 @sf(P)o(ass)14 b(phrases)g(are)g(the)g(least)f
(common)g(w)o(a)o(y)f(to)h(implemen)o(t)g(mac)o(hine)-1329 50 y(generated)k
(passw)o(ords.)k(The)16 b(idea)e(here)i(is)f(v)o(ery)g(simple.)21 b(T)m
(ak)o(e)14 b(100)g(nouns,)h(100)-1329 50 y(v)o(erbs,)21 b(100)c(adjectiv)o
(e)i(and)g(100)f(adv)o(erbs.)33 b(Generate)20 b(an)e(eigh)o(t)g(digit)g
(random)-1329 50 y(n)o(um)o(b)q(er.)35 b(Consider)20 b(it)f(as)h(four)f(2)g
(digit)g(random)f(n)o(um)o(b)q(ers)j(and)e(use)h(that)g(to)-1329 50 y(pic)o
(k)d(one)g(of)f(eac)o(h)h(of)f(the)h(ab)q(o)o(v)o(e)g(parts)g(of)f(sp)q
(eec)o(h.)28 b(The)17 b(user)h(is)e(then)i(giv)o(en)e(a)-1329 50 y(phrase)g
(lik)o(e)e(\\Orange)h(Cars)g(Sleep)g(Quic)o(kly)m(.")k(The)c(w)o(ords)g
(within)f(eac)o(h)h(list)f(are)-1328 49 y(uniquely)d(determined)h(b)o(y)f
(their)g(\014rst)h(t)o(w)o(o)f(c)o(haracters.)19 b(The)11 b(user)h(ma)o(y)e
(then)i(t)o(yp)q(e)-1328 50 y(the)j(phrase,)f(the)h(\014rst)f(few)g
(letters)h(of)f(eac)o(h)g(w)o(ord)g(or)g(the)g(eigh)o(t)g(digit)f(n)o(um)o
(b)q(er.)-1289 64 y(The)k(phrases)h(are)f(easy)g(to)f(remem)o(b)q(er,)i
(the)f(system)g(remains)g(just)f(as)h(secure)h(if)-1329 50 y(y)o(ou)d
(publish)g(the)h(list)f(of)g(w)o(ords)h(and)f(has)h(ab)q(out)f(26)g(bits)h
(of)e(randomness.)24 b(One)-1328 49 y(can)12 b(adapt)f(the)h(system)g(do)o
(wn)g(to)f(three)i(w)o(ords)e(with)g(20)g(bits)h(of)f(randomness)h(and)-1329
50 y(still)h(b)q(e)i(su\016cien)o(tly)f(safe)g(for)f(most)h(applications.)
-864 78 y(I)h(b)q(eliev)o(e)g(that)g(mac)o(hine)f(generated)j(passw)o
(ords)e(are)h(generally)e(a)h(bad)g(solution)f(to)-1432 50 y(the)i(passw)o
(ord)g(problem.)23 b(If)15 b(y)o(ou)g(m)o(ust)h(use)g(them,)g(I)g
(strongly)f(urge)h(the)h(use)f(of)f(pass-)-1431 50 y(phrases)h(o)o(v)o(er)g
(the)g(other)g(metho)q(ds.)24 b(In)15 b(an)o(y)g(ev)o(en)o(t,)h(if)f(y)o
(our)g(cen)o(ter)i(is)f(using)f(mac)o(hine)-737 124 y(10)-999 b
10 @eop1
9 @bop0
9 @eop0
0 0 9 @bop1 262 307 a @F9 @sf(e\016cien)o(t)15 b(than)g(the)g(others)h(b)o
(y)f(ab)q(out)g(a)g(factor)f(of)h(50,000,)o 14 x(it)f(should)h(b)q(e)h
(used)f(to)g(sup-)-1431 50 y(plemen)o(t)f(the)h(others)g(rather)g(than)f
(b)q(e)h(used)g(exclusiv)o(ely)m(.)j(Among)13 b(its)i(man)o(y)e(virtues)i
(is)-1432 50 y(that)i(an)g(automated)g(c)o(hec)o(king)g(system)h(that)g
(reads)g(the)g(encrypted)h(passw)o(ords)f(do)q(es)-1431 50 y(not)d
(require)i(ha)o(ving)d(source)j(for)e(the)i(op)q(erating)e(system)i(or)e
(making)f(mo)q(di\014cation)h(an)-1432 49 y(system)f(mo)q(di\014cations.)
-329 50 y(The)i(second)i(metho)q(d)e(of)g(prev)o(en)o(ting)g(dum)o(b)g
(passw)o(ord)h(is)f(to)g(alter)g(the)h(passw)o(ord)-1431 50 y(c)o(hanging)e
(facilit)o(y)g(so)h(that)g(it)g(do)q(esn't)h(accept)h(dum)o(b)e(passw)o
(ords.)26 b(This)16 b(has)g(t)o(w)o(o)g(big)-1432 50 y(adv)n(an)o(tages)i
(o)o(v)o(er)h(the)h(\014rst)g(metho)q(d.)34 b(The)19 b(\014rst)h(of)e
(these)j(is)e(computational.)32 b(The)-1431 50 y(second)21 b(is)g(more)g
(imp)q(ortan)o(t.)38 b(By)21 b(prev)o(en)o(ting)g(the)h(user)f(from)g
(selecting)g(the)g(p)q(o)q(or)-1431 49 y(passw)o(ord)c(to)g(b)q(egin)g
(with,)g(one)g(do)q(esn't)h(need)g(an)e(administrativ)o(e)g(pro)q(cedure)q
18 x(to)h(get)-1431 50 y(him)d(to)h(c)o(hange)h(it)f(later.)23 b(It)16 b
(can)f(all)g(happ)q(en)h(directly)g(with)f(no)g(h)o(uman)g(in)o(terv)o(en)o
(tion)-1432 50 y(and)e(no)h(apparen)o(t)g(accoun)o(tabilit)o(y)m(.)j(As)e
(a)e(general)h(rule,)g(p)q(eople)h(are)f(not)g(happ)o(y)g(ab)q(out)-1432
50 y(passw)o(ords)f(and)g(really)f(don't)h(w)o(an)o(t)f(to)h(hear)h(from)e
(another)h(p)q(erson)h(that)f(they)h(need)g(to)-1432 50 y(c)o(hange)g
(their)g(passw)o(ord)g(y)o(et)g(again.)-532 50 y(While)g(this)g(c)o(hange)i
(do)q(es)f(require)h(a)e(system)i(mo)q(di\014cation,)o 14 x(it)e(can)h
(often)g(b)q(e)g(done)-1431 49 y(without)f(source)i(co)q(de)g(b)o(y)f
(writing)f(a)h(pre-pro)q(ces)q(sor)h(to)f(scree)q(n)h(the)g(passw)o(ords)g
(b)q(efore)-1431 50 y(the)g(new)g(passw)o(ord)h(is)e(passed)i(to)f(the)g
(existing)g(utilities.)23 b(The)17 b(w)o(eakness)g(in)e(this)h(ap-)-1432
50 y(proac)o(h)c(lies)g(with)f(the)i(users)g(who)f(are)h(not)f(required)h
(to)e(use)i(the)g(new)f(st)o(yle)h(of)e(passw)o(ord)-1431 50 y(facili)o(t)o
(y)m(.)o 30 x(As)19 b(a)e(result,)j(one)e(\014nds)h(that)f(facilities)f
(that)h(use)h(only)e(this)h(metho)q(d)h(ha)o(v)o(e)-1432 50 y(go)q(o)q(d)c
(passw)o(ords)j(for)e(ev)o(ery)o(one)h(except)h(the)f(system)g(sta\013)g
(and)f(new)h(users)h(who)e(ha)o(v)o(e)-1432 49 y(had)d(their)i(initial)o
12 x(passw)o(ords)g(set)g(b)o(y)f(the)g(system)h(sta\013.)-854 50 y(The)k
(third)g(metho)q(d)g(is)f(designed)i(primarily)d(to)i(catc)o(h)g(the)g
(bad)g(passw)o(ords)h(that)-1432 50 y(are)f(en)o(tered)i(in)d(despite)i
(the)g(use)g(of)e(the)i(second)g(metho)q(d.)34 b(Once)20 b(could)f(c)o
(hec)o(k)h(the)-1431 50 y(\\dum)o(bness")d(of)g(a)h(passw)o(ord)g(with)f
(eac)o(h)h(attempted)g(use.)30 b(While)17 b(this)h(is)f(computa-)-1432 50 y
(tionall)o(y)12 b(more)h(exp)q(ensiv)o(e)i(than)e(the)h(second)g(metho)q
(d,)f(it)g(generally)g(catc)o(hes)i(ev)o(ery)o(one.)-1431 49 y(Ev)o(en)e
(the)h(system)f(programmers)h(tend)f(to)g(use)h(the)g(standard)f(login)f
(utilit)o(y)l(.)17 b(It)c(has)g(the)-1431 50 y(nice)k(feature)h(of)e(lo)q
(c)o(king)g(out)i(an)o(y)o(one)e(that)h(\014nds)h(a)f(w)o(a)o(y)f(to)h
(circum)o(v)o(en)o(t)h(the)f(second)-1430 50 y(metho)q(d.)33 b(This)19 b
(generally)g(requires)h(a)f(small)f(amoun)o(t)g(of)h(system)h(source)g
(and)f(risks)-1431 50 y(causing)13 b(em)o(barrassmen)o(t)i(to)f(\\to)q(o)f
(clev)o(er")i(system)f(sta\013)h(mem)o(b)q(ers.)-1057 50 y(In)c(terms)i
(of)e(dum)o(b)g(passw)o(ords,)h(there)h(are)f(a)f(n)o(um)o(b)q(er)h(of)f
(\\attac)o(k)g(lists".)17 b(An)12 b(attac)o(k)-1432 50 y(list)e(is)h(a)g
(list)f(of)h(common)f(passw)o(ords)i(that)f(an)g(attac)o(k)o(er)g(could)g
(use)h(to)f(try)g(to)g(login)e(with.)-1432 49 y(Sev)o(eral)18 b(of)g
(these)i(ha)o(v)o(e)e(b)q(een)i(published)f(and)f(more)g(are)h(constan)o
(tly)g(b)q(eing)f(formed.)-1432 50 y(These)d(lists)f(are)h(used)h(for)e
(the)h(automated)f(passw)o(ord)h(guesser)h(and)e(they)h(ma)o(y)e(also)h(b)q
(e)-1431 50 y(used)f(directly)f(in)g(the)g(second)i(and)e(third)g(metho)q
(d)g(describ)q(ed)i(ab)q(o)o(v)o(e.)j(With)12 b(the)g(second)-1430 50 y
(and)j(third)h(metho)q(d)g(one)g(ma)o(y)f(also)g(use)h(criteria)h
(including)d(minim)o(um)g(length,)i(use)g(of)-1432 50 y(non-alphab)q(etic)f
(c)o(haracters)q(,)i(etc.)26 b(Finally)m(,)o 15 x(information)15 b(ab)q
(out)h(the)g(individual)e(user)-1430 49 y(found)c(in)h(standard)h(system)g
(\014les)g(can)f(b)q(e)h(scanned)h(to)e(see)i(if)d(the)i(user)g(has)g
(incorp)q(orated)-1431 50 y(this)h(information)f(in)o(to)i(his)f(passw)o
(ord.)-631 108 y @F5 @sf(2.1.6)47 b(Mac)o(hine)16 b(Generate)o(d)e(P)o
(assw)o(ords)-787 77 y @F9 @sf(Most)e(users)i(hate)f(mac)o(hine)f
(generated)i(passw)o(ords.)k(Often)13 b(they)g(are)g(unremem)o(b)q(erable)
-1431 50 y(and)j(accompanied)h(b)o(y)g(a)f(w)o(arning)g(to)h(\\)p @F6 @sf
(Never)k @F9 @sf(write)c(them)g(do)o(wn")f(whic)o(h)h(is)g(a)f(frus-)-1431
49 y(trating)c(com)o(bination.)o 17 x(\(W)m(e)g(will)f(discuss)j(the)f
(the)g(writing)f(do)o(wn)g(of)g(passw)o(ords)i(later.\))-1432 50 y(Mac)o
(hine)g(generated)h(passw)o(ords)f(come)h(in)e(four)h(basic)g(t)o(yp)q(es)
-991 91 y @F5 @sf(Gibb)q(erish)o(.)20 b @F9 @sf(This)14 b(is)g(the)h(most)e
(ob)o(vious)h(approac)o(h)g(to)g(randomness.)19 b(Indep)q(ende)q(n)o(tly)
-1328 50 y(selecte)q(d)d(sev)o(eral)g(c)o(haracters)g(from)f(the)g(set)h
(of)f(all)e(prin)o(table)i(c)o(haracters.)23 b(F)m(or)15 b(a)-727 165 y(9)
-988 b
9 @eop1
8 @bop0
@F9 @sf
[<
FFC0FFF01F003F8006001F0002001E0003003C0001007C000080780000C0F8000041F00000
21E0000023E0000013C000000F8000000F8000000F0000001F0000001E0000003D0000007D
80000078800000F0400001F0600001E0200003E0100003C01800078018000FC03E007FF0FF
C0>
28 28 -1 27 31] 88 @dc
8 @eop0
0 0 8 @bop1 262 307 a @F9 @sf(and)13 b(shado)o(w)h(passw)o(ord)g(\014les.)
-425 50 y(Of)19 b(course,)i(since)f(most)f(of)f(us)h(use)h(broadcast)g
(nets,)h(there)f(is)f(a)g(real)g(danger)g(of)-1432 50 y(passw)o(ords)10 b
(b)q(eing)f(seen)i(as)f(they)g(go)f(o)o(v)o(er)h(the)g(wire.)16 b(This)10 b
(class)g(of)f(problems)g(is)h(discussed)-1430 50 y(in)j(the)h(the)h(Jo)o
(ys)f(of)f(Broadcast)i(app)q(endix)f(and)g(the)g(Guests)h(app)q(endix.)-1112
49 y(Kerb)q(eros,)j(dev)o(elop)q(ed)g(at)e(MIT's)g(A)o(thena)h(pro)r(ject)g
(has)g(an)f(alternativ)o(e)h(means)f(of)-1432 50 y(handling)11 b(passw)o
(ords.)19 b(It)13 b(allo)o(ws)f(one)h(to)g(remo)o(v)o(e)g(all)f(the)i
(passw)o(ords)g(from)e(the)i(normal)-1433 50 y(use)e(mac)o(hines)f(and)g
(to)h(nev)o(er)g(ha)o(v)o(e)f(them)h(broadcasted)g(in)f(clear)h(text.)18 b
(While)11 b(Kerb)q(eros)-1430 50 y(is)16 b(vulnerable)g(to)h(a)f(n)o(um)o
(b)q(er)g(of)g(in)o(teresting)h(passw)o(ord)g(guessing)g(and)f
(cryptographic)-1431 50 y(attac)o(ks)11 b(and)f(curren)o(tly)i(has)f
(problems)g(with)f(m)o(ulti-home)f(mac)o(hines)i(\(Hosts)h(with)f(more)-1432
49 y(than)16 b(one)h(IP)f(address\),)i(it)e(do)q(es)i(pro)o(vide)e(the)h
(\014rst)g(practical)f(attempt)h(and)f(net)o(w)o(ork)-1431 50 y(securit)o
(y)e(for)g(a)f(univ)o(ersit)o(y)h(en)o(vironmen)o(t.)-619 50 y(An)f(often)g
(o)o(v)o(erlo)q(ok)o(ed)f(issue)i(is)f(that)g(of)g(passw)o(ords)g(for)g
(games.)18 b(Man)o(y)12 b(m)o(ultipla)o(y)n(er)-1432 50 y(computer)17 b
(games,)g(suc)o(h)g(as)g(\\Xtrek")h(and)e(\\Empire")h(require)g(the)h
(user)f(to)g(supply)g(a)-1432 50 y(passw)o(ord)h(to)g(prev)o(en)o(t)h
(users)h(from)d(imp)q(ersonating)g(one)i(another)f(during)g(the)h(game.)
-1433 50 y(Generally)11 b(these)j(passw)o(ords)f(are)g(stored)g(b)o(y)g
(the)g(game)e(itself)h(and)h(are)f(in)g(principle)h(un-)-1432 49 y
(related)j(to)g(the)g(passw)o(ords)h(that)e(the)i(op)q(erating)f(system)g
(itself)g(uses.)25 b(Unfortunately)m(,)-1433 50 y(these)15 b(passw)o(ords)f
(are)g(generally)g(stored)g(unencrypte)q(d)h(and)f(some)f(users)j(use)e
(the)g(same)-1431 50 y(passw)o(ord)i(as)g(they)h(do)f(for)f(logging)g(in)o
(to)g(the)i(mac)o(hine)f(itself.)24 b(Some)16 b(games)g(no)o(w)f(ex-)-1431
50 y(plicitly)g(w)o(arn)h(the)h(users)h(not)e(use)h(his)g(login)e(passw)o
(ords.)26 b(P)o(erhaps)18 b(these)g(games)e(will)-1433 50 y(ev)o(en)o
(tually)10 b(c)o(hec)o(k)h(that)g(the)g(passw)o(ord)g(is)g(indeed)g(not)f
(the)i(same)e(as)h(the)g(login)f(passw)o(ord.)-1432 107 y @F5 @sf(2.1.4)
47 b(Man)o(y)16 b(faces)g(of)f(a)h(p)q(erson)-629 77 y @F9 @sf(A)10 b
(single)g(individual)o 9 x(can)h(ha)o(v)o(e)f(man)o(y)f(di\013eren)o(t)j
(relationships)e(to)g(a)g(computer)h(at)f(di\013er-)-1431 50 y(en)o(t)k
(times.)20 b(The)15 b(system)g(programmers)f(are)h(acting)f(as)g(\\just)h
(users")g(when)g(they)g(read)-1431 50 y(their)f(mail)e(or)i(pla)o(y)f(a)h
(computer)g(game.)k(In)c(man)o(y)f(op)q(erating)h(systems,)g(a)g(p)q
(erson)h(gets)-1431 50 y(all)c(of)g(his)h(privileges)g(all)f(of)h(the)h
(time.)k(While)11 b(this)i(is)f(not)g(true)h(in)f(Multics,)g(it)g(is)g
(true)h(in)-1432 49 y(the)f(default)g(con\014guration)g(of)g(almost)f(ev)o
(ery)i(other)g(op)q(erating)f(system.)18 b(F)m(ortunately)12 b(a)-1432 50 y
(computer)e(do)q(esn't)h(kno)o(w)f(an)o(ything)f(ab)q(out)h(\\p)q(eople")h
(and)f(hence)h(is)g(p)q(erfectly)g(happ)o(y)f(to)-1432 50 y(allo)n(w)h(a)i
(single)f(p)q(erson)h(ha)o(v)o(e)g(sev)o(eral)g(accoun)o(ts)g(with)f
(di\013eren)o(t)i(passw)o(ords)f(at)g(di\013eren)o(t)-1431 50 y(privilege)f
(lev)o(els.)17 b(This)c(helps)g(to)g(prev)o(en)o(t)h(the)f(acciden)o
(tally)g(disclosure)g(of)g(a)f(privileged)-1432 50 y(passw)o(ord.)27 b(In)
17 b(the)h(case)g(where)g(the)g(privileged)e(user)i(has)g(his)e
(unprivileged)h(accoun)o(t)-1431 49 y(ha)o(ving)11 b(the)j(same)e(passw)o
(ord)i(as)f(his)f(unprivileged)h(accoun)o(t)g(on)f(other)i(mac)o(hines)f
(it)f(will)-1433 50 y(at)k(least)h(b)q(e)h(the)f(case)h(that)f(his)f
(privileges)h(are)g(not)g(compromised)g(when)g(and)g(if)f(this)-1432 50 y
(other)e(mac)o(hine)g(is)f(compromised.)-500 50 y(The)j(one)f(case)h
(where)h(it)e(is)g(esp)q(ecially)g(imp)q(ortan)o(t)g(to)g(ha)o(v)o(e)g
(separate)h(accoun)o(ts)h(or)-1432 50 y(passw)o(ords)c(for)f(a)g(single)g
(individual)f(is)h(for)g(someone)h(who)f(tra)o(v)o(els)h(to)f(giv)o(e)g
(demos.)18 b(One)-1431 49 y(can)g(b)q(e)g(assured)i(that)e(his)g(passw)o
(ord)g(will)f(b)q(e)i(lost)f(when)g(he)h(is)f(giving)e(a)i(demo)g(and)-1432
50 y(something)f(breaks.)32 b(The)19 b(most)f(common)f(form)h(of)f(\\break)n
(age")h(is)g(a)g(problem)g(with)-1432 50 y(duplex)12 b(of)g(of)g(dela)o(y)m
(.)k(It)d(w)o(ould)e(nice)i(if)f(all)f(that)i(w)o(as)f(lost)g(w)o(as)h
(the)g(demo)f(passw)o(ord)h(and)-1432 50 y(for)g(the)i(demo)e(passw)o(ord)i
(to)e(b)q(e)i(of)e(no)h(use)g(to)g(an)g(attac)o(k)o(er.)-975 108 y @F5 @sf
(2.1.5)47 b(Automated)14 b(Chec)o(ks)i(for)f(Dum)o(b)f(P)o(assw)o(ords)-993
76 y @F9 @sf(Automated)h(c)o(hec)o(ks)i(for)e(dum)o(b)g(passw)o(ords)h
(come)f(in)g(three)i(v)n(arieties.)22 b(The)16 b(\014rst)g(is)g(to)-1432
50 y(routinely)g(run)i(a)e(passw)o(ord)i(crac)o(k)o(er)g(against)e(the)i
(encrypted)h(passw)o(ords)e(and)g(notice)-1431 50 y(what)f(is)g(caugh)o
(t.)26 b(While)16 b(this)g(is)h(a)f(go)q(o)q(d)g(idea,)g(it)g(is)h(curren)o
(tly)g(used)h(without)e(either)-1431 50 y(of)e(the)i(other)g(t)o(w)o(o)e
(mec)o(hanisms)i(w)o(e)f(will)f(describ)q(e.)23 b(Since)16 b(it)f(is)g
(computationall)o(y)f(less)-726 171 y(8)-988 b
8 @eop1
7 @bop0
/@F8 @newfont
@F8 @sf
[<
60F0F060>
4 4 -4 3 12] 58 @dc
7 @eop0
0 0 7 @bop1 324 307 a @F9 @sf(The)14 b(w)o(orst)g(o\013enders)i
(of)d(the)i(\\shared)f(passw)o(ord)h(problem")e(are)h(net)o(w)o(ork)g
(main)o(te-)-1432 50 y(nance)i(p)q(eople)h(and)e(teams.)25 b(Often)17 b
(they)f(w)o(an)o(t)g(an)g(accoun)o(t)g(on)g(ev)o(ery)h(lo)q(cal)e(area)h
(net)-1431 50 y(that)g(they)h(service,)h(eac)o(h)f(with)f(the)h(same)g
(passw)o(ord.)26 b(That)16 b(w)o(a)o(y)g(they)h(can)g(examine)-1432 50 y
(net)o(w)o(ork)d(problems)g(and)f(suc)o(h)i(without)e(ha)o(ving)g(to)h(lo)q
(ok)f(up)h(h)o(undreds)h(of)e(passw)o(ords.)-1356 49 y(While)j(the)h(net)o
(w)o(ork)f(main)o(tainers)g(are)h(generally)f(\(but)h(not)g(alw)o(a)o(ys\))f
(go)q(o)q(d)g(ab)q(out)-1432 50 y(pic)o(king)c(reasonable)h(passw)o(ords)h
(and)f(k)o(eeping)h(them)f(secre)q(t,)h(if)e(an)o(y)h(one)h(mac)o(hine)f
(that)-1432 50 y(they)f(are)h(using)g(has)f(a)g(readable)h(passw)o(ord)g
(\014le)f(\(discusse)q(d)i(b)q(elo)o(w\))e(or)g(is)h(ev)o(er)g(compro-)-1432
50 y(mised,)i(this)h(passw)o(ord)g(is)f(itself)h(compromised)f(and)h(an)f
(attac)o(k)o(er)h(can)g(gain)f(unautho-)-1432 50 y(rized)f(access)i(to)e
(h)o(undreds)h(or)e(thousands)i(of)e(mac)o(hines.)-925 108 y @F5 @sf
(2.1.3)47 b(Readable)16 b(P)o(assw)o(ord)o 15 x(Files)-662 76 y @F9 @sf(A)e
(readable)i(passw)o(ord)f(\014le)g(is)f(an)h(acciden)o(t)h(w)o(aiting)d
(to)i(happ)q(en.)21 b(With)15 b(access)h(to)f(the)-1431 50 y(encrypted)g
(passw)o(ord)f(an)f(attac)o(k)o(er)i(can)e(guess)i(passw)o(ords)f(at)g
(his)g(leisure)g(without)f(y)o(ou)-1432 50 y(b)q(eing)i(able)g(to)g(tell)g
(that)g(he)h(is)f(doing)g(so.)22 b(Once)17 b(he)e(has)h(a)f(correct)i
(passw)o(ord,)f(he)f(can)-1431 50 y(then)d(access)q 13 x(y)o(our)g(mac)o
(hine)g(as)g(that)g(user.)19 b(In)12 b(the)h(case)g(of)e(certain)i(op)q
(erating)f(systems,)-1431 49 y(including)f(older)h(v)o(ersions)g(of)g
(VMS,)f(there)j(is)e(a)f(w)o(ell)h(kno)o(w)f(in)o(v)o(ersion)h(for)g(the)g
(passw)o(ord)-1431 50 y(encryption)k(algorithm)o 14 x(and)g(hence)g(the)g
(attac)o(k)o(er)g(do)q(esn't)g(need)h(to)e(guess)h(at)g(all)e(once)-1431
50 y(he)g(can)g(read)g(the)h(passw)o(ord)f(\014le.)-477 50 y(Changing)g
(the)i(encryption)h(metho)q(d)e(to)h(some)g(other)g(metho)q(d)g(that)f(is)h
(also)f(publi-)-1433 50 y(cally)g(kno)o(wn)g(do)q(esn't)i(help)f(this)g
(set)h(of)f(problems,)g(ev)o(en)h(if)e(the)i(crypto-system)g(itself)-1432
49 y(is)d(m)o(uc)o(h)g(stronger.)21 b(The)15 b(w)o(eakness)h(here)f(is)g
(not)f(in)g(the)h(crypto-system)h(but)f(rather)g(in)-1432 50 y(the)f(ease)h
(of)e(making)g(guesses.)-431 50 y(It)f(is)g(vital)e(to)i(protect)h(y)o
(our)f(passw)o(ord)g(\014le)g(from)f(b)q(eing)h(read.)18 b(There)13 b(are)g
(t)o(w)o(o)e(parts)-1431 50 y(to)e(this.)17 b(First)10 b(y)o(ou)f(should)h
(prev)o(en)o(t)g(anon)o(ymous)f(\014le)h(transfers)h(from)e(b)q(e)h(able)g
(to)g(remo)o(v)o(e)-1432 50 y(a)16 b(cop)o(y)g(of)g(the)h(passw)o(ord)g
(\014le.)26 b(While)16 b(this)g(is)h(generally)f(v)o(ery)h(easy)g(to)f(do)g
(correct)q(ly)m(,)-1432 50 y(there)i(is)g(a)f(common)g(mistak)o(e)g(w)o
(orth)h(a)o(v)o(oiding.)o 28 x(Most)g(\014le)g(transfer)h(faciliti)o(es)e
(allo)o(w)-1433 49 y(y)o(ou)12 b(to)i(restrict)g(the)g(part)g(of)f(the)h
(\014le)f(system)h(from)f(whic)o(h)g(unauthen)o(ticated)h(transfers)-1430
50 y(can)i(b)q(e)i(made.)26 b(It)16 b(is)h(necess)q(ary)h(to)e(put)h(a)f
(partial)g(passw)o(ord)h(\014le)f(in)h(this)f(subsec)q(tion)-1431 50 y(so)h
(that)g(an)g(anon)o(ymous)f(agen)o(t)h(kno)o(ws)g(\\who)g(it)f(\(itself)s
(\))i(is".)27 b(Man)o(y)17 b(sites)g(ha)o(v)o(e)g(put)-1431 50 y(complete)f
(passw)o(ord)h(\014les)g(here)g(defeating)f(one)h(of)f(the)h(most)f(imp)q
(ortan)o(t)f(purp)q(oses)j(of)-1432 50 y(the)c(restrictions.)19 b(\(Of)13 b
(course)i(without)e(this)h(restriction)g(\\W)m(orld)e(Readable")h(tak)o
(es)h(on)-1432 49 y(a)f(v)o(ery)h(literal)f(meaning)p @F8 @sf(:)7 b(:)g(:)o
6 x @F9 @sf(\))-407 50 y(The)14 b(second)i(part)e(of)g(the)h(solution)e
(is)h(somewhat)g(harder.)20 b(This)14 b(is)g(to)g(prev)o(en)o(t)i(un-)-1432
50 y(privileged)c(users)i(who)e(are)i(using)e(the)h(system)h(from)e
(reading)g(the)i(encrypted)g(passw)o(ord)-1431 50 y(from)i(the)i(passw)o
(ord)g(\014le.)28 b(The)18 b(reason)g(that)f(this)h(is)f(di\016cult)g(is)g
(that)g(the)h(passw)o(ord)-1431 50 y(\014le)d(has)h(a)f(great)h(deal)g(of)f
(information)f(that)i(p)q(eople)g(and)f(programs)h(need)g(in)g(it)f(other)
-1431 49 y(than)g(the)h(passw)o(ords)g(themselv)o(es.)24 b(Some)16 b(v)o
(ersion)f(of)g(some)h(op)q(erating)f(systems)i(ha)o(v)o(e)-1432 50 y
(privileged)g(calls)g(to)g(handle)h(the)g(details)f(of)g(all)g(this)g(and)h
(hence)h(their)f(utilities)f(ha)o(v)o(e)-1432 50 y(already)c(b)q(een)i
(written)f(to)g(allo)o(w)e(protection)j(of)e(the)i(encrypted)g(passw)o
(ords.)-1188 50 y(Most)d(of)f(the)i(curren)o(t)g(v)o(ersions)f(of)g(Unix)f
(are)h @F6 @sf(not)17 b @F9 @sf(among)10 b(of)i(these)h(systems.)18 b
(Berk)o(e-)-1430 50 y(ley)10 b(has)h(distributed)h(a)f(set)g(of)g(patc)o
(hes)h(to)e(incorp)q(orate)i(this)f(separation)g(\(called)g(shado)o(w)-1432
50 y(passw)o(ords\))16 b(and)g(the)g(latest)h(v)o(ersion)f(of)f(the)h
(SunOS)h(has)f(faciliti)o(es)f(for)h(it.)23 b(F)m(or)16 b(those)-1431 49 y
(who)g(are)h(using)g(an)f(op)q(erating)h(system)h(that)e(do)q(es)i(not)f
(y)o(et)g(ha)o(v)o(e)f(shado)o(w)h(passw)o(ords)-1431 50 y(and)c(cannot)g
(use)h(one)g(of)e(the)i(new)g(releases,)g(a)f(n)o(um)o(b)q(er)h(of)e(ad)h
(ho)q(c)h(shado)o(wing)e(systems)-1430 50 y(ha)o(v)o(e)g(b)q(een)i(dev)o
(elop)q(ed.)19 b(One)13 b(can)h(install)d(shado)o(w)i(passw)o(ords)h(b)o
(y)f(editing)f(the)i(binaries)-1432 50 y(of)9 b @F4 @sf(/bin/login)p @F9 @sf
(,)o 10 x @F4 @sf(/bin/passw)o(d)g @F9 @sf(and)h(similar)f(programs)i
(that)f(actually)g(need)h(to)g(use)g(the)-1431 50 y(passw)o(ord)k(\014elds)g
(and)f(then)i(mo)q(dify)d @F4 @sf(/etc/vipw)g @F9 @sf(to)h(w)o(ork)h(with)f
(b)q(oth)h(the)g(diminished)-727 156 y(7)-988 b
7 @eop1
6 @bop0
6 @eop0
0 0 6 @bop1 262 307 a @F9 @sf(and)12 b(ev)o(ery)h(mac)o(hine)f(tested.)19 b
(These)13 b(included)g(mac)o(hines)f(that)h(had)f(passw)o(ord)g(systems)
-1430 50 y(designed)i(to)g(prev)o(en)o(t)h(usernames)g(from)e(b)q(eing)h
(used)h(as)f(passw)o(ords.)-1056 50 y(This)c(summer,)h(while)f(I)g(w)o(as)g
(testing)h(a)f(series)i(of)e(sensitiv)o(e)h(systems,)g(where)h(h)o(undred)
-1431 50 y(of)g(thousands)i(of)e(dollars)g(w)o(ere)i(sp)q(en)o(t)g(to)f
(remo)o(v)o(e)h(securit)o(y)g(holes)f(including)f(re-writing)-1432 49 y(a)h
(fair)g(fraction)h(of)f(the)h(op)q(erating)g(system,)g(there)i(w)o(ere)e
(Jo)q(es.)-945 50 y(It)h(is)h(w)o(orth)o(while)e(to)i(include)f(a)g(pro)q
(cess)q 16 x(in)g(y)o(our)h(system)g(batc)o(hing)f(\014le)g(\()p @F4 @sf
(cron)g @F9 @sf(on)-1432 50 y(unix\))e(to)g(c)o(hec)o(k)i(for)e(Jo)q(es)i
(explicitly)m(.)h(The)f(most)e(common)g(o)q(ccurrenc)q(es)q 15 x(of)g(Jo)q
(es)h(is)g(the)-1431 50 y(initial)o 16 x(passw)o(ord)k(that)f(the)h
(system)g(administrators)f(set)h(for)f(an)g(accoun)o(t)h(whic)o(h)f(has)
-1431 50 y(nev)o(er)12 b(b)q(een)h(c)o(hanged.)k(Often)12 b(this)g
(initial)o 10 x(passw)o(ord)g(is)g(set)g(b)o(y)f(the)h(administrator)f
(with)-1432 49 y(the)k(exp)q(ectation)g(the)h(user)f(will)f(c)o(hange)h
(it)f(promptly)m(.)19 b(Often)d(the)f(user)h(do)q(esn't)f(kno)o(w)-1432
50 y(ho)o(w)d(to)h(c)o(hange)h(it)f(or)g(in)g(fact)g(nev)o(er)h(logs)f(in)g
(at)g(all.)o 17 x(In)g(the)h(latter)g(case)g(a)f(dorman)o(t)g(ac-)-1432
50 y(coun)o(t)e(lies)h(on)f(the)h(system)g(accomplishing)e(nothing)h
(except)i(w)o(asting)e(system)h(resource)q(s)-1430 50 y(and)h(increasing)h
(vulnerabilities.)-542 108 y @F5 @sf(2.1.2)47 b(Same)16 b(P)o(assw)o(ords)o
15 x(on)f(Di\013eren)o(t)o 15 x(Mac)o(hines)-966 76 y @F9 @sf(Man)o(y)f(y)o
(ears)i(ago)f(when)h(a)f(computing)g(cen)o(ter)i(had)e(a)g(single)g
(mainframe)f(the)i(issue)g(of)-1432 50 y(a)e(user)h(ha)o(ving)f(the)h
(same)g(passw)o(ord)g(on)f(m)o(ultiple)f(mac)o(hines)i(w)o(as)f(mo)q(ot.)
19 b(As)c(long)f(the)-1431 50 y(n)o(um)o(b)q(er)i(of)f(mac)o(hines)h(that)g
(a)f(user)i(accesse)q(d)g(w)o(as)f(v)o(ery)g(small,)e(it)i(w)o(as)g
(reasonable)g(to)-1432 50 y(request)k(that)f(a)f(p)q(erson)i(to)e(use)i(a)e
(di\013eren)o(t)i(passw)o(ord)f(on)f(eac)o(h)i(mac)o(hine)e(or)h(set)g(of)
-1432 50 y(mac)o(hines.)e(With)c(a)g(mo)q(dern)h(w)o(orkstation)e(en)o
(vironmen)o(t,)h(it)g(is)g(no)g(longer)h(practical)f(to)-1432 49 y(exp)q
(ect)j(this)g(from)e(a)h(user)i(and)e(a)g(user)h(is)g(unlik)o(ely)e(to)h
(comply)f(if)h(ask)o(ed.)23 b(There)16 b(are)g(a)-1432 50 y(n)o(um)o(b)q
(er)e(of)f(simple)g(compromise)h(measures)h(that)f(can)g(and)g(should)g(b)q
(e)g(tak)o(en.)-1218 50 y(Among)9 b(these)j(measures)g(is)e(requesting)h
(that)g(privileged)f(users)i(ha)o(v)o(e)e(di\013eren)o(t)h(pass-)-1431 50 y
(w)o(ords)16 b(for)h(their)g(privileged)f(accoun)o(ts)i(than)e(for)h
(their)g(normal)f(use)h(accoun)o(t)g(and)g(for)-1432 50 y(their)e(accoun)o
(ts)h(on)e(mac)o(hines)i(at)e(other)i(cen)o(ters)q(.)22 b(If)15 b(the)h
(latter)f(is)g(not)g(the)g(case,)h(then)-1431 50 y(an)o(y)o(one)e(who)h
(gains)g(con)o(trol)g(of)f(one)i(of)e(these)j(\\other")e(mac)o(hines)g
(whic)o(h)g(y)o(ou)g(ha)o(v)o(e)g(no)-1432 49 y(con)o(trol)e(o)o(v)o(er,)h
(has)g(gained)f(privileged)g(access)q 15 x(to)h(y)o(ours)g(as)g(w)o(ell.)
-992 50 y(The)c(basic)g(question)h(of)e(when)i(passw)o(ords)g(should)f(b)q
(e)g(the)h(same)f(is)g(actually)f(a)h(simple)-1432 50 y(one.)29 b(P)o
(assw)o(ords)19 b(should)f(b)q(e)g(the)g(same)g(when)g(the)h(t)o(w)o(o)e
(mac)o(hines)h(are)g(\(1\))g(logicall)o(y)-1433 50 y(equiv)n(alen)o(t)d
(\(as)h(in)f(a)h(p)q(o)q(ol)f(of)h(w)o(orkstations\),)g(\(2\))g(\\trust)g
(eac)o(h)h(other")f(to)g(the)h(exten)o(t)-1431 50 y(that)d(compromising)g
(one)h(w)o(ould)f(compromise)h(the)g(others)h(in)f(other)g(w)o(a)o(ys,)f
(or)h(\(3\))g(are)-1431 49 y(run)f(b)o(y)g(the)h(same)g(cen)o(ter)h(with)d
(the)i(same)g(securit)o(y)g(measures.)21 b(P)o(assw)o(ords)15 b(should)f
(b)q(e)-1431 50 y(di\013eren)o(t)k(when)g(the)g(computers)g(are)g(\(1\))f
(run)h(b)o(y)f(di\013eren)o(t)h(organizations,)f(\(2\))h(ha)o(v)o(e)-1432
50 y(di\013eren)o(t)c(lev)o(els)g(of)g(securit)o(y)g(or)g(\(3\))g(ha)o(v)o
(e)g(di\013eren)o(t)h(op)q(erating)e(systems.)-1128 50 y(Lest)f(this)g
(seems)h(to)q(o)e(strict,)h(b)q(e)g(assured)h(that)f(I)f(ha)o(v)o(e)h(on)f
(sev)o(eral)h(o)q(ccasions)g(brok)o(en)-1431 50 y(in)o(to)e(mac)o(hines)i
(b)o(y)g(giving)e(privileged)h(users)i(on)e(the)i(target)f(mac)o(hines)f
(accoun)o(ts)i(on)e(one)-1431 49 y(of)17 b(m)o(y)g(o)o(wn)h(and)g
(exploiting)f(their)h(use)h(of)e(the)i(same)f(passw)o(ord)h(on)f(b)q(oth.)
30 b(F)m(urther,)-1431 50 y(mac)o(hines)17 b(with)g(di\013eren)o(t)h(op)q
(erating)f(systems)h(are)g(inheren)o(tly)f(vulnerable)g(to)g(di\013er-)-1431
50 y(en)o(t)e(\\programming)e(bugs")i(and)g(hence)i(b)o(y)e(ha)o(ving)f
(the)h(same)h(passw)o(ords)f(on)g(the)h(t)o(w)o(o)-1432 50 y(mac)o(hines,)g
(eac)o(h)h(mac)o(hine)f(is)g(op)q(en)h(to)f(the)h(all)e(the)i(bugs)f(that)h
(could)f(exist)h(on)f(either)-1431 50 y(system.)-73 50 y(It)g(is)h(in)o
(teresting)f(\(but)h(of)f(little)g(practical)g(v)n(alue\))g(to)g(note)h
(that)f(an)g(attac)o(k)o(er)h(can)-1431 49 y(gain)f(a)h(cryptographic)h
(adv)n(an)o(tage)f(b)o(y)g(ha)o(ving)g(t)o(w)o(o)g(di\013eren)o(t)i
(encrypted)g(strings)f(for)-1432 50 y(the)d(same)g(passw)o(ord.)22 b(This)
15 b(w)o(ould)f(happ)q(en)i(when)f(the)h(user)g(has)f(the)h(same)f(passw)o
(ord)-1431 50 y(on)h(t)o(w)o(o)h(mac)o(hines)g(but)g(it)g(has)g(b)q(een)i
(encrypted)f(with)f(di\013eren)o(t)h(salts.)28 b(In)17 b(principle,)-1432
50 y(this)12 b(mak)o(es)g(hostile)g(decryption)h(m)o(uc)o(h)f(easier.)18 b
(In)12 b(practice,)i(the)f(attac)o(k)f(metho)q(ds)h(that)-1432 50 y(are)h
(most)g(often)f(used)i(do)f(not)g(exploit)f(this.)-13 156 y(6)-988 b
6 @eop1
5 @bop0
@F1 @sf
[<
FFFFFF80FFFFFF80FFFFFF807FFFFFC03FFFFFC01FFFFFC00FFFFFC0070001C0038001C001
C001C000E000E0007000E0003C00E0001E0000000F0000000780000003E0000003F0000001
F8000000FC000000FE0000007F0000007F8000003FC000003FC000003FE03C003FE07E001F
E0FF001FE0FF001FE0FF003FE0FF003FC0FE003FC07C007F803800FF001F03FE000FFFFC00
03FFF00000FF8000>
27 39 -3 38 34] 50 @dc
5 @eop0
0 0 5 @bop1 262 307 a @F1 @sf(2)69 b(Inciden)n(t)22 b(Av)n(oidance)-683
91 y @F9 @sf(\\An)12 b(ounce)g(of)g(prev)o(en)o(tion)g(is)g(w)o(orth)g(a)g
(p)q(ound)h(of)e(cure.")18 b(In)13 b(computer)f(secur)q(it)o(y)h(this)f
(is)-1432 50 y(an)e(understate)q(men)o(t)i(b)o(y)f(a)g(greater)h(factor)f
(than)g(can)g(b)q(e)h(easily)f(b)q(e)g(b)q(eliev)o(ed.)18 b(V)m(ery)11 b
(little)-1432 50 y(has)j(historically)g(b)q(een)i(done)e(to)h(prev)o(en)o
(t)h(computer)f(break-ins)g(and)f(I)h(ha)o(v)o(e)f(b)q(een)i(told)-1432
50 y(b)o(y)d(a)h(n)o(um)o(b)q(er)g(of)f(the)i(coun)o(try's)f(top)f
(computer)i(scien)o(tists)g(that)f(\\Computer)g(Securit)o(y)-1431 49 y(is)f
(a)g(w)o(aste)g(of)g(time.")k(The)d(b)q(elief)f(that)g(securit)o(y)i
(measures)f(or)f(prev)o(en)o(tiv)o(e)h(medicine)g(is)-1432 50 y(a)f(w)o
(aste)i(has)f(led)g(to)g(gian)o(t)f(exp)q(enditures)j(to)e(repair)g
(damage)g(to)f(b)q(oth)i(computers)g(and)-1432 50 y(p)q(eople)i(resp)q(e)q
(ctiv)o(ely)m(.)30 b(Must)18 b(of)f(m)o(y)f(surprise,)k(sev)o(eral)e
(system)g(managers)g(reviewing)-1432 50 y(this)f(do)q(cumen)o(t)g(w)o(ere)h
(sure)g(that)g(ev)o(en)f(basic)h(prev)o(en)o(tativ)o(e)f(measures)i(w)o
(ould)d(not)h(b)q(e)-1431 50 y(cost)d(e\013ectiv)o(e)h(as)f(compared)h(to)e
(repairing)h(disasters)h(after)f(they)g(o)q(ccurre)q(d.)-1177 49 y(The)c
(v)n(ast)f(ma)r(jorit)o(y)f(of)h(the)h(securit)o(y)h(inciden)o(ts)f(are)g
(caused)g(b)o(y)g(one)f(of)g(ab)q(out)h(a)f(dozen)-1431 50 y(w)o(ell)h
(understo)q(o)q(d)j(problems.)k(By)11 b(not)g(making)f(these)j(mistak)o
(es,)e(y)o(ou)g(can)h(prev)o(en)o(t)g(most)-1432 50 y(of)i(the)h(problems)g
(from)f(happ)q(ening)h(to)g(y)o(our)f(systems)i(and)f(a)o(v)o(oid)f(un)o
(told)g(hassles)i(and)-1432 50 y(losses.)22 b(Almost)15 b(ev)o(ery)h(site)f
(that)g(I)g(surv)o(ey)h(and)f(almost)g(ev)o(ery)g(inciden)o(t)h(that)f
(did)g(not)-1432 50 y(in)o(v)o(ol)o(v)o(e)d(insiders)h(w)o(as)f(caused)i
(b)o(y)e(one)h(of)f(these)i(problems.)k(In)13 b(the)g(most)f(of)g(the)h
(insider)-1431 49 y(cases,)f(no)f(amoun)o(t)g(of)g(computer)h(securit)o(y)g
(w)o(ould)f(ha)o(v)o(e)g(help)q(ed)h(and)f(these)i(are)f(in)e(man)o(y)-1432
50 y(w)o(a)o(ys)15 b(demonstrated)h(problems)g(with)f(ph)o(ysical)g
(securit)o(y)h(or)f(p)q(ersonnel)i(p)q(olicy)e(rather)-1431 50 y(than)e
(with)h(computer)h(securit)o(y)f(p)q(er)h(se.)-587 50 y(Most)i(of)f(the)i
(securit)o(y)g(inciden)o(ts)f(are)h(caused)g(b)o(y)f(\\attac)o(k)o(ers")g
(of)g(limi)o(ted)f(abilit)o(y)-1433 50 y(and)f(resource)q(s.)26 b(Because)
17 b(of)f(this)g(and)f(b)q(ecause)q 17 x(there)i(are)f(so)g(man)o(y)f
(easy)i(targets,)f(if)-1432 50 y(y)o(ou)d(pro)o(vide)h(the)g(most)g(basic)g
(lev)o(el)g(of)f(protection,)h(most)g(of)f(the)i(attac)o(k)o(ers)g(will)d
(break)-1431 49 y(in)o(to)f(some)i(other)g(site)g(instead)g(of)f(b)q
(othering)h(y)o(ours.)18 b(There)c(are)f(of)f(course)i(exceptional)-1432
50 y(cases.)39 b(If)20 b(y)o(ou)g(are)h(b)q(eliev)o(ed)g(to)f(ha)o(v)o(e)h
(highly)e(sensitiv)o(e)i(information)e(or)i(are)g(on)f(a)-1432 50 y(\\hit)
13 b(list")g(of)h(one)g(t)o(yp)q(e)g(or)g(another,)g(y)o(ou)g(ma)o(y)f
(encoun)o(ter)i(more)f(dedicated)h(attac)o(k)o(ers.)-1431 50 y(Readers)j
(in)o(terested)i(in)d(more)h(comprehensiv)o(e)h(defensiv)o(e)g(strategies)g
(should)e(consult)-1431 50 y(the)d(app)q(endices.)-217 49 y(Ov)o(er)f
(all,)f(prev)o(en)o(tion)h(of)f(a)h(problem)f(is)h(ab)q(out)g(four)g
(orders)h(of)e(magnitude)g(c)o(heap)q(er)-1430 50 y(than)18 b(ha)o(ving)f
(to)h(handling)g(it)g(in)g(the)h(a)o(v)o(erage)f(case.)33 b(Prop)q(er)19 b
(planning)e(can)i(reduce)-1430 50 y(the)f(cost)g(of)f(inciden)o(t)h
(handling)e(and)i(reco)o(v)o(ery)h(and)e(is)h(discussed)h(in)e(the)h
(section)h(on)-1432 50 y(planning.)o 27 x(In)e(addition)f(to)h(whatev)o
(er)h(other)g(measures)h(are)e(tak)o(en,)h(the)g(greatest)g(in-)-1432 50 y
(cremen)o(tal)f(securit)o(y)h(impro)o(v)o(emen)o(t)f(will)e(b)q(e)j
(obtained)f(b)q(e)h(implemen)o(ting)d(the)j(simple)-1432 49 y(measures)d
(describ)q(ed)g(b)q(elo)o(w.)-477 117 y @F2 @sf(2.1)55 b(P)n(assw)o(ords)
-377 76 y @F9 @sf(While)9 b(\\go)q(o)q(d)h(passw)o(ords")i(is)e(not)h(a)f
(hot)h(and)f(sexy)h(topic)g(and)f(will)g(nev)o(er)h(command)f(the)-1431
50 y(prestige)15 b(of)f(exploitable)g(bugs)h(in)f(the)h(op)q(erating)g
(system)g(itself,)f(it)h(is)f(the)h(single)g @F6 @sf(most)-1432 50 y(imp)n
(ortant)h @F9 @sf(topic)d(in)g(inciden)o(t)g(prev)o(en)o(tion.)19 b(Doing)
12 b(ev)o(erything)h(else)h(en)o(tirely)f(correc)q(tly)-1431 50 y(is)g
(almost)g(of)h @F6 @sf(no)h(value)i @F9 @sf(unless)e(y)o(ou)e(get)h(this)g
(righ)o(t!)-841 108 y @F5 @sf(2.1.1)47 b(Jo)q(e's)-249 76 y @F9 @sf(A)15 b
(\\Jo)q(e")h(is)f(an)g(accoun)o(t)h(where)h(the)f(username)g(is)f(the)h
(same)g(as)g(the)g(passw)o(ord.)23 b(This)-1432 50 y(mak)o(es)14 b(the)i
(passw)o(ord)f(b)q(oth)g(easy)g(to)g(remem)o(b)q(er)h(and)e(easy)h(to)g
(guess.)22 b(It)15 b(is)f(the)i(single)-1432 50 y(most)d(common)g(cause)i
(of)e(passw)o(ord)i(problems)f(in)f(the)i(mo)q(dern)f(w)o(orld.)-1105 50 y
(In)f(1986,)f(there)j(w)o(as)e(p)q(opular)g(conjecture)q 15 x(that)g(ev)o
(ery)h(mac)o(hine)f(had)h(a)f(Jo)q(e.)18 b(There)-1430 49 y(w)o(as)e(fair)f
(amoun)o(t)h(of)f(random)h(testing)h(done)g(and)f(in)g(fact)g(a)g(Jo)q(e)h
(w)o(as)f(found)g(on)g(eac)o(h)-726 172 y(5)-988 b
5 @eop1
4 @bop0
@F1 @sf
[<
7FFFFE7FFFFE7FFFFE00FE0000FE0000FE0000FE0000FE0000FE0000FE0000FE0000FE0000
FE0000FE0000FE0000FE0000FE0000FE0000FE0000FE0000FE0000FE0000FE0000FE0000FE
0000FE0000FE0000FE0000FE0000FE0000FE0000FE00F8FE00FFFE00FFFE0007FE00007E00
001E00000E00>
23 39 -5 38 34] 49 @dc
@F6 @sf
[<
FF00FFC01C001E000C000E0004000E0002001C0002001C0001001C0001801C0000801C0000
401C00007FFC0000201C0000201C0000101C0000181C0000081C0000041C0000041C000002
3C0000023800000138000001B8000000B80000007800000078000000380000003800000018
0000001800>
26 29 -2 28 31] 65 @dc
@F6 @sf
[<
FFE7FF000F0078000700380007003800070038000700380003801C0003801C0003801C0003
801C0001C00E0001C00E0001C00E0001C00E0000FFFF0000E0070000E0070000E007000070
0380007003800070038000700380003801C0003801C0003801C0003801C0003C01E001FFCF
FE>
31 28 -3 27 31] 72 @dc
@F6 @sf
[<
00001E00FFE079000F0078800700F0800700F0400700F0400700F000038070000380700003
8070000380700001C0700001C0700001C0600001C0C00000FFC00000E0700000E01C0000E0
0E0000700F0000700780007007800070078000380380003803800038038000380700003C0E
0001FFF800>
26 29 -3 27 30] 82 @dc
[<
FFFFC00E03C00700E007006007003007001003801003800803800803800801C00001C00001
C00001C00000E00000E00000E00000E0000070000070000070000070000038000038000038
00003800003C0001FFE0>
21 28 -3 27 26] 76 @dc
[<
FFFF80000E01E0000700780007003C0007001C0007001E0003800F0003800F0003800F0003
800F0001C00F0001C00F0001C00E0001C01C0000FFF80000E03C0000E00E0000E007000070
0780007003C0007003C0007001C0003801C0003801C0003801C0003803C0003C078001FFFE
00>
26 28 -3 27 29] 66 @dc
[<
3C0063006180C1C0C0C0E0E0E060E070E070E0707038703870387038383038303E6039C01C
001C001C001C000E000E000E000E00070007003F00>
13 29 -5 28 19] 98 @dc
[<
01FF00000601F00018000E0020000000200000004000000040783C0081C662008381E20083
00E1008300710087007080870070808700708043803840438038404380384021C0384020C0
1C4010E01C401070204008184040040780800200008001000080008001000060020000180C
000007F000>
26 29 -6 28 32] 64 @dc
[<
FFF00780038003800380038001C001C001C001C000E000E000E000E0007000700070007000
38003800380038039C007C001C000C00060002>
15 28 -4 27 21] 49 @dc
[<
0F000030C000602000601000C01800C00C00C00C00600600600600600600300E00180E0008
1E00063C0003780001F00003F00003CC000786000703000601800601800601800300C00300
C0018080008180006100001E00>
18 29 -4 27 21] 56 @dc
[<
1E000021800060C000606000E07000E03800E03800E01C00E01C00E01C00601C00700E0070
0E00700E00780C00380C003C0C003B18001CF0001C00000C00000E00000600000300000383
8001838000C080003080000F00>
17 29 -5 27 21] 54 @dc
[<
80E00083F800C7F8007E0C0040060020020010020010010008000006000001000000C00000
3000001800000C000E06001107001083801083800841C00841C00841C00441C00441C00201
C002018001018000C300003C00>
18 29 -4 27 21] 50 @dc
[<
FFFFF0000E0078000700180007000C00070004000700040003800200038002000380010003
81010001C0800001C0800001C0800001C0800000FFC00000E0C00000E0400000E040000070
200000702040007000400070004000380040003800400038004000380060003C00E001FFFF
E0>
27 28 -3 27 28] 69 @dc
[<
83E000CC1800F004006002006003006001806001802000C02000C00000C00000C00001C000
01C00007C0007F8001FF0003FC0003E0000700000700000600000600100600100300180300
1801001800801800403C00304C000F84>
22 30 -3 28 23] 83 @dc
[<
1F000021C000406000803000803800801C00E01C00700E00000E00000E00000E00000E0000
0C00000C0000380001F800000E000007000703800883800841C00841C00841C00440C00400
C00200C001018000C180003E00>
18 29 -4 27 21] 51 @dc
[<
01F80000070600000C01800018004000380020007000100070000800F0000800F0000400F0
000400F0000400F0000000F0000000F0000000F00000007800000078000000780000003C00
00003C0000801C0000801E0000800E000080070000C0038001C001C001C000E003C0003002
E0001E0C600003F020>
27 30 -6 28 30] 67 @dc
[<
7C0000860000818000E0C000E0C000006000003000003800001800001C00079C000C6C0018
1E00181E00380E00380F003807003807003807001C03001C03001C03800C03800E03000603
0003030001830000C600003C00>
17 29 -5 27 21] 57 @dc
[<
00600000E000007000007000007000007000003800003800803F0040F8003F1C00181C000C
1C00061C00020E00010E00018E0000C600004000006000003000003000001800001800001C
00000C00000E000006000007000007000003000003800003800003800001C0000180>
18 36 -2 27 21] 52 @dc
[<
0C00000E00000E000007000007000007000003000003800003800001800001C00000C00000
C000006000006000006000003000001000001800800800800C00400400400600601A003027
003C61001FE08017E08009C040>
18 29 -7 27 21] 55 @dc
[<
1E000071800060C000E06000C06000E03000E03800E03800E01C00E01C00E01C00700E0070
0E00700E00700E003807003807003807003807001C03001C03800C03800E03800603800603
0003030001830000C600003C00>
17 29 -5 27 21] 48 @dc
4 @eop0
0 0 4 @bop1 262 307 a @F1 @sf(1)69 b(Ov)n(erview)-386 91 y @F9 @sf(Since)
13 b(1984,)f(I)g(ha)o(v)o(e)h(b)q(een)h(p)q(erio)q(dically)e(distracted)i
(from)e(m)o(y)h(education,)f(m)o(y)h(researc)o(h)-1430 50 y(and)c(from)f
(m)o(y)h(p)q(ersonal)h(life)e(to)i(help)f @F6 @sf(hand)r(le)h @F9 @sf
(computer)g(emergencies)q(.)18 b(After)10 b(presen)o(ting)-1431 50 y
(dozens)20 b(of)f(pap)q(ers,)j(tutorials)d(talks)h(on)f(computer)h
(securit)o(y)m(,)i(Roger)d(Anderson)i(and)-1432 50 y(George)d(Mic)o(hale)h
(arranged)g(for)f(me)h(to)g(lead)f(a)h(one)g(da)o(y)f(in)o(tensiv)o(e)h
(seminar)f(on)h(the)-1431 49 y(practical)11 b(asp)q(ects)j(of)d(computer)h
(securit)o(y)h(in)e(an)h(unclassi\014ed)g(net)o(w)o(ork)o(ed)h(en)o
(vironmen)o(t)-1432 50 y(for)c(IEEE)h(Comp)q(con.)17 b(This)9 b(primer)h
(w)o(as)g(written)g(as)g(a)f(basic)h(text)g(for)g(this)f(t)o(yp)q(e)i
(seminar)-1432 50 y(and)k(has)h(b)q(een)h(used)f(for)g(ab)q(out)f(2)h
(dozen)g(of)f(them)h(in)f(the)i(past)f(y)o(ear)g(,)f(and)h(is)f(still)g
(in)-1432 50 y(draft)e(form.)-137 50 y(The)d(text)h(is)f(divided)g(in)o
(to)f(four)h(main)f(sections)i(with)f(a)g(n)o(um)o(b)q(er)g(of)g(app)q
(endices.)18 b(The)-1431 49 y(\014rst)d(t)o(w)o(o)e(ma)r(jor)h(sections)i
(of)d(this)i(do)q(cumen)o(t)g(con)o(tain)e(the)i(material)f(for)g(the)h
(morning)-1433 50 y(lecture.)29 b(The)18 b(t)o(w)o(o)f(follo)o -1 x(wing)o
16 x(sections)i(con)o(tain)d(the)i(afterno)q(on)g(lecture)g(con)o(tain)f
(the)-1431 50 y(afterno)q(on's)j(material.)38 b(The)21 b(remaining)e(app)q
(endices)j(include)f(material)f(that)h(is)f(of)-1432 50 y(in)o(terest)15 b
(to)e(those)i(p)q(eople)f(who)g(ha)o(v)o(e)g(to)f(deal)h(with)g(other)g
(computer)h(securit)o(y)f(issues.)-1353 50 y(Since)19 b(this)g(primer)f
(is)h(a)f(direct)i(and)e(simple)h(\\ho)o(w)f(to)g(guide")g(for)h
(cost-e\013ectiv)o(e)-1430 49 y(solutions)e(to)g(computer)i(securit)o(y)g
(problems,)f(it)f(do)q(es)i(not)f(con)o(tain)f(as)h(man)o(y)f(stories)-1431
50 y(and)12 b(examples)g(as)h(m)o(y)e(other)i(tutorials.)k(Those)c
(readers)q 13 x(in)o(tereste)q(d)h(in)e(these)h(stories)h(or)-1432 50 y
(who)e(are)g(ha)o(ving)g(di\016cult)o(y)f(con)o(vincing)h(p)q(eople)h(in)f
(their)h(organization)e(of)h(the)h(need)g(for)-1432 50 y(computer)k
(securit)o(y)g(are)g(referred)q 17 x(to)g @F6 @sf(A)o(ttack)g(of)g(the)g
(Tiger)g(T)m(e)n(am)p @F9 @sf(,)f(when)h(it)f(b)q(ecomes)-1430 50 y(a)o(v)n
(ail)o(abl)o(e.)j(and)14 b(those)h(readers)h(in)o(terested)g(in)d
(comprehensiv)o(e)j(list)e(of)f(computer)i(secu-)-1430 50 y(rit)o(y)e
(vulnerabilities)g(should)h(con)o(tact)g(the)h(author)f(regarding)f(the)i
@F6 @sf(Hackman)j @F9 @sf(pro)r(ject.)-1350 49 y(Suggestions,)11 b
(questions)h(and)f(other)g(commen)o(ts)g(are)h(alw)o(a)o(ys)e(w)o(elcome.)
17 b(Please)12 b(send)-1431 50 y(commen)o(ts)i(to)g @F4 @sf(primer@cert.)o
(sei.c)o(mu.e)p(d)o(u)p @F9 @sf(.)k(I)d(hop)q(e)g(to)f(publish)g(a)g(this)h
(set)g(of)f(notes)-1431 50 y(in)g(a)h(more)g(complete)g(form)f(in)h(the)h
(future.)22 b(When)15 b(sending)g(commen)o(ts)g(or)g(questions,)-1431 50 y
(please)f(men)o(tion)f(that)h(y)o(ou)g(w)o(ere)g(reading)g(v)o(ersion)g
(CER)m(T)f(0.6)g(of)g(June)i(8,)e(1990.)-758 91 y @F6 @sf(R)o(ussel)r(l)i
(L.)g(Br)n(and)-343 50 y(br)n(and@l)r(l)r(l-cr)n(g.l)r(l)o(nl.gov)-437 50 y
(1862)g(Euclid)g(A)o(ve,)g(Suite)g(136)-435 50 y(Berkeley,)f(CA)29 b
(94709)-198 1005 y @F9 @sf(4)-988 b
4 @eop1
3 @bop0
3 @eop0
0 0 3 @bop1 262 307 a @F5 @sf(G)24 b(Guest)14 b(Accoun)o(ts)990 b(42)-1370
50 y @F9 @sf(G.1)29 b(A)o(ttac)o(k)14 b(Di\016cult)o(y)f(Ratios)31 b @F8 @sf
(:)21 b(:)f(:)g(:)g(:)h(:)f(:)g(:)h(:)f(:)g(:)g(:)h(:)f(:)g(:)h(:)f(:)g(:)g
(:)h(:)f(:)g(:)h(:)44 b @F9 @sf(42)-1370 50 y(G.2)29 b(Individual)13 b(Sp)q
(onsors)43 b @F8 @sf(:)20 b(:)g(:)h(:)f(:)g(:)g(:)h(:)f(:)g(:)h(:)f(:)g(:)g
(:)h(:)f(:)g(:)h(:)f(:)g(:)g(:)h(:)f(:)g(:)h(:)44 b @F9 @sf(42)-1370 50 y
(G.3)29 b(The)15 b(No)e(Guest)i(P)o(olicy)j @F8 @sf(:)i(:)g(:)h(:)f(:)g(:)g
(:)h(:)f(:)g(:)h(:)f(:)g(:)g(:)h(:)f(:)g(:)h(:)f(:)g(:)g(:)h(:)f(:)g(:)h
(:)44 b @F9 @sf(42)-1432 91 y @F5 @sf(H)25 b(Orange)15 b(Bo)q(ok)1047 b
(43)-1432 91 y(I)44 b(Ac)o(kno)o(wledgemen)n(ts)924 b(44)-727 2151 y @F9 @sf
(3)-988 b
3 @eop1
2 @bop0
2 @eop0
0 0 2 @bop1 419 307 a @F9 @sf(3.1.4)46 b(Av)o(oiding)13 b(the)h(F)m(uture)g
(Inciden)o(ts)h(and)f(Escalation)21 b @F8 @sf(:)f(:)g(:)h(:)f(:)g(:)h(:)
44 b @F9 @sf(23)-1275 50 y(3.1.5)i(Av)o(oiding)13 b(lo)q(oking)o 13 x(fo)q
(olish)21 b @F8 @sf(:)g(:)f(:)g(:)h(:)f(:)g(:)g(:)h(:)f(:)g(:)h(:)f(:)g(:)g
(:)h(:)f(:)g(:)h(:)44 b @F9 @sf(23)-1275 50 y(3.1.6)60 b(Finding)13 b(out)h
(who)f(did)h(it)33 b @F8 @sf(:)21 b(:)f(:)g(:)h(:)f(:)g(:)g(:)h(:)f(:)g(:)h
(:)f(:)g(:)g(:)h(:)f(:)g(:)h(:)44 b @F9 @sf(24)-1275 50 y(3.1.7)i
(Punishing)14 b(the)g(attac)o(k)o(ers)34 b @F8 @sf(:)21 b(:)f(:)g(:)h(:)f
(:)g(:)g(:)h(:)f(:)g(:)h(:)f(:)g(:)g(:)h(:)f(:)g(:)h(:)44 b @F9 @sf(24)-1370
49 y(3.2)d(Bac)o(kups)25 b @F8 @sf(:)20 b(:)g(:)h(:)f(:)g(:)g(:)h(:)f(:)g
(:)h(:)f(:)g(:)g(:)h(:)f(:)g(:)h(:)f(:)g(:)g(:)h(:)f(:)g(:)h(:)f(:)g(:)g
(:)h(:)f(:)g(:)h(:)44 b @F9 @sf(24)-1275 50 y(3.2.1)i(Wh)o(y)13 b(W)m(e)h
(Need)h(Bac)o(k)f(Ups)e @F8 @sf(:)21 b(:)f(:)g(:)h(:)f(:)g(:)g(:)h(:)f(:)g
(:)h(:)f(:)g(:)g(:)h(:)f(:)g(:)h(:)44 b @F9 @sf(24)-1275 50 y(3.2.2)i(Ho)o
(w)14 b(to)f(form)g(a)h(Bac)o(k)g(Up)g(Strategy)h(that)f(W)m(orks)28 b
@F8 @sf(:)20 b(:)g(:)h(:)f(:)g(:)h(:)44 b @F9 @sf(25)-1370 50 y(3.3)d(F)m
(orming)13 b(a)g(Plan)22 b @F8 @sf(:)e(:)g(:)h(:)f(:)g(:)h(:)f(:)g(:)g(:)h
(:)f(:)g(:)h(:)f(:)g(:)g(:)h(:)f(:)g(:)h(:)f(:)g(:)g(:)h(:)f(:)g(:)h(:)44 b
@F9 @sf(26)-1370 50 y(3.4)d(T)m(o)q(ols)13 b(to)h(ha)o(v)o(e)g(on)f(hand)
29 b @F8 @sf(:)20 b(:)h(:)f(:)g(:)g(:)h(:)f(:)g(:)h(:)f(:)g(:)g(:)h(:)f(:)g
(:)h(:)f(:)g(:)g(:)h(:)f(:)g(:)h(:)44 b @F9 @sf(27)-1370 49 y(3.5)d
(Sample)14 b(Scenarios)g(to)g(W)m(ork)f(on)g(in)h(Groups)28 b @F8 @sf(:)
20 b(:)g(:)h(:)f(:)g(:)h(:)f(:)g(:)g(:)h(:)f(:)g(:)h(:)44 b @F9 @sf(27)-1432
92 y @F5 @sf(4)38 b(Inciden)o(t)14 b(Handling)944 b(29)-1370 50 y @F9 @sf
(4.1)41 b(Basic)15 b(Hin)o(ts)32 b @F8 @sf(:)21 b(:)f(:)g(:)g(:)h(:)f(:)g
(:)h(:)f(:)g(:)g(:)h(:)f(:)g(:)h(:)f(:)g(:)g(:)h(:)f(:)g(:)h(:)f(:)g(:)g
(:)h(:)f(:)g(:)h(:)44 b @F9 @sf(29)-1275 49 y(4.1.1)i(P)o(anic)14 b(Lev)o
(el)26 b @F8 @sf(:)21 b(:)f(:)g(:)h(:)f(:)g(:)g(:)h(:)f(:)g(:)h(:)f(:)g(:)g
(:)h(:)f(:)g(:)h(:)f(:)g(:)g(:)h(:)f(:)g(:)h(:)44 b @F9 @sf(29)-1275 50 y
(4.1.2)i(Call)13 b(Logs)g(and)h(Time)f(Lines)26 b @F8 @sf(:)20 b(:)g(:)h
(:)f(:)g(:)g(:)h(:)f(:)g(:)h(:)f(:)g(:)g(:)h(:)f(:)g(:)h(:)44 b @F9 @sf
(29)-1275 50 y(4.1.3)i(Accoun)o(tabilit)o(y)13 b(and)h(Authorit)o(y)20 b
@F8 @sf(:)h(:)f(:)g(:)g(:)h(:)f(:)g(:)h(:)f(:)g(:)g(:)h(:)f(:)g(:)h(:)44 b
@F9 @sf(29)-1275 50 y(4.1.4)i(Audit)14 b(Logs)33 b @F8 @sf(:)21 b(:)f(:)g
(:)h(:)f(:)g(:)g(:)h(:)f(:)g(:)h(:)f(:)g(:)g(:)h(:)f(:)g(:)h(:)f(:)g(:)g
(:)h(:)f(:)g(:)h(:)44 b @F9 @sf(29)-1275 50 y(4.1.5)i(Timestamps)14 b
@F8 @sf(:)21 b(:)f(:)g(:)h(:)f(:)g(:)g(:)h(:)f(:)g(:)h(:)f(:)g(:)g(:)h(:)f
(:)g(:)h(:)f(:)g(:)g(:)h(:)f(:)g(:)h(:)44 b @F9 @sf(29)-1370 49 y(4.2)d
(Basic)15 b(T)m(ec)o(hniques)27 b @F8 @sf(:)20 b(:)h(:)f(:)g(:)h(:)f(:)g
(:)g(:)h(:)f(:)g(:)h(:)f(:)g(:)g(:)h(:)f(:)g(:)h(:)f(:)g(:)g(:)h(:)f(:)g
(:)h(:)44 b @F9 @sf(30)-1275 50 y(4.2.1)i(Di\013erencing)19 b @F8 @sf(:)i
(:)f(:)g(:)h(:)f(:)g(:)g(:)h(:)f(:)g(:)h(:)f(:)g(:)g(:)h(:)f(:)g(:)h(:)f
(:)g(:)g(:)h(:)f(:)g(:)h(:)44 b @F9 @sf(30)-1275 50 y(4.2.2)i(Finding)31 b
@F8 @sf(:)20 b(:)g(:)h(:)f(:)g(:)h(:)f(:)g(:)g(:)h(:)f(:)g(:)h(:)f(:)g(:)g
(:)h(:)f(:)g(:)h(:)f(:)g(:)g(:)h(:)f(:)g(:)h(:)44 b @F9 @sf(30)-1275 50 y
(4.2.3)i(Sno)q(oping)36 b @F8 @sf(:)20 b(:)h(:)f(:)g(:)h(:)f(:)g(:)g(:)h
(:)f(:)g(:)h(:)f(:)g(:)g(:)h(:)f(:)g(:)h(:)f(:)g(:)g(:)h(:)f(:)g(:)h(:)44 b
@F9 @sf(30)-1275 50 y(4.2.4)i(T)m(rac)o(king)13 b @F8 @sf(:)20 b(:)g(:)h
(:)f(:)g(:)h(:)f(:)g(:)g(:)h(:)f(:)g(:)h(:)f(:)g(:)g(:)h(:)f(:)g(:)h(:)f
(:)g(:)g(:)h(:)f(:)g(:)h(:)44 b @F9 @sf(30)-1275 50 y(4.2.5)i(Psyc)o
(hology)33 b @F8 @sf(:)21 b(:)f(:)g(:)h(:)f(:)g(:)g(:)h(:)f(:)g(:)h(:)f(:)g
(:)g(:)h(:)f(:)g(:)h(:)f(:)g(:)g(:)h(:)f(:)g(:)h(:)44 b @F9 @sf(30)-1370
49 y(4.3)d(Prosecution)28 b @F8 @sf(:)21 b(:)f(:)g(:)g(:)h(:)f(:)g(:)h(:)f
(:)g(:)g(:)h(:)f(:)g(:)h(:)f(:)g(:)g(:)h(:)f(:)g(:)h(:)f(:)g(:)g(:)h(:)f
(:)g(:)h(:)44 b @F9 @sf(30)-1370 50 y(4.4)d(Exercise)28 b @F8 @sf(:)20 b
(:)g(:)h(:)f(:)g(:)g(:)h(:)f(:)g(:)h(:)f(:)g(:)g(:)h(:)f(:)g(:)h(:)f(:)g
(:)g(:)h(:)f(:)g(:)h(:)f(:)g(:)g(:)h(:)f(:)g(:)h(:)44 b @F9 @sf(31)-1432
91 y @F5 @sf(5)38 b(Reco)o(v)o(ering)14 b(F)l(rom)h(Disasters)760 b(32)-1432
92 y(A)26 b(Micro)16 b(Computers)951 b(32)-1432 91 y(B)28 b(VMS)16 b
(Script)1071 b(35)-1432 91 y(C)28 b(Highly)16 b(Sensitiv)o(e)f(En)o
(vironmen)o -1 x(ts)o 676 x(37)-1432 92 y(D)25 b(Handling)15 b(the)g
(Press)920 b(38)-1370 50 y @F9 @sf(D.1)30 b(Spin)14 b(Con)o(trol)40 b
@F8 @sf(:)20 b(:)g(:)g(:)h(:)f(:)g(:)h(:)f(:)g(:)g(:)h(:)f(:)g(:)h(:)f(:)g
(:)g(:)h(:)f(:)g(:)h(:)f(:)g(:)g(:)h(:)f(:)g(:)h(:)44 b @F9 @sf(38)-1370
49 y(D.2)30 b(Time)14 b(Con)o(trol)26 b @F8 @sf(:)20 b(:)g(:)g(:)h(:)f(:)g
(:)h(:)f(:)g(:)g(:)h(:)f(:)g(:)h(:)f(:)g(:)g(:)h(:)f(:)g(:)h(:)f(:)g(:)g
(:)h(:)f(:)g(:)h(:)44 b @F9 @sf(38)-1370 50 y(D.3)30 b(Hero)15 b(Making)
35 b @F8 @sf(:)20 b(:)g(:)g(:)h(:)f(:)g(:)h(:)f(:)g(:)g(:)h(:)f(:)g(:)h(:)f
(:)g(:)g(:)h(:)f(:)g(:)h(:)f(:)g(:)g(:)h(:)f(:)g(:)h(:)44 b @F9 @sf(38)-1370
50 y(D.4)30 b(Discouraging)13 b(or)h(Encouraging)f(a)h(Next)h(Inciden)o(t)
30 b @F8 @sf(:)20 b(:)g(:)h(:)f(:)g(:)g(:)h(:)f(:)g(:)h(:)44 b @F9 @sf(38)
-1370 50 y(D.5)30 b(Prosecution)e @F8 @sf(:)21 b(:)f(:)g(:)g(:)h(:)f(:)g
(:)h(:)f(:)g(:)g(:)h(:)f(:)g(:)h(:)f(:)g(:)g(:)h(:)f(:)g(:)h(:)f(:)g(:)g
(:)h(:)f(:)g(:)h(:)44 b @F9 @sf(39)-1370 50 y(D.6)30 b(No)14 b(Commen)o(t)
30 b @F8 @sf(:)20 b(:)g(:)g(:)h(:)f(:)g(:)h(:)f(:)g(:)g(:)h(:)f(:)g(:)h(:)f
(:)g(:)g(:)h(:)f(:)g(:)h(:)f(:)g(:)g(:)h(:)f(:)g(:)h(:)44 b @F9 @sf(39)-1370
49 y(D.7)30 b(Honest)o(y)g @F8 @sf(:)20 b(:)g(:)h(:)f(:)g(:)g(:)h(:)f(:)g
(:)h(:)f(:)g(:)g(:)h(:)f(:)g(:)h(:)f(:)g(:)g(:)h(:)f(:)g(:)h(:)f(:)g(:)g
(:)h(:)f(:)g(:)h(:)44 b @F9 @sf(39)-1432 92 y @F5 @sf(E)31 b(Ob)s(ject)14 b
(Co)q(de)i(Protection)o 820 x(40)-1432 91 y(F)32 b(The)15 b(Jo)o(y)h(of)f
(Broadcast)872 b(41)-727 258 y @F9 @sf(2)-988 b
2 @eop1
1 @bop0
1 @eop0
0 0 1 @bop1 262 307 a @F1 @sf(Con)n(ten)n(ts)-269 91 y @F5 @sf(1)38 b(Ov)o
(erview)1150 b(4)-1432 92 y(2)38 b(Inciden)o(t)14 b(Av)o(oidance)942 b(5)
-1370 50 y @F9 @sf(2.1)41 b(P)o(assw)o(ords)23 b @F8 @sf(:)d(:)h(:)f(:)g
(:)g(:)h(:)f(:)g(:)h(:)f(:)g(:)g(:)h(:)f(:)g(:)h(:)f(:)g(:)g(:)h(:)f(:)g
(:)h(:)f(:)g(:)g(:)h(:)f(:)g(:)h(:)65 b @F9 @sf(5)-1275 49 y(2.1.1)46 b
(Jo)q(e's)18 b @F8 @sf(:)j(:)f(:)g(:)g(:)h(:)f(:)g(:)h(:)f(:)g(:)g(:)h(:)f
(:)g(:)h(:)f(:)g(:)g(:)h(:)f(:)g(:)h(:)f(:)g(:)g(:)h(:)f(:)g(:)h(:)65 b
@F9 @sf(5)-1275 50 y(2.1.2)46 b(Same)14 b(P)o(assw)o(ords)g(on)g(Di\013eren)o
(t)h(Mac)o(hines)d @F8 @sf(:)20 b(:)g(:)h(:)f(:)g(:)g(:)h(:)f(:)g(:)h(:)
65 b @F9 @sf(6)-1275 50 y(2.1.3)46 b(Readable)14 b(P)o(assw)o(ord)g(Files)f
@F8 @sf(:)21 b(:)f(:)g(:)h(:)f(:)g(:)g(:)h(:)f(:)g(:)h(:)f(:)g(:)g(:)h(:)f
(:)g(:)h(:)65 b @F9 @sf(7)-1275 50 y(2.1.4)46 b(Man)o(y)14 b(faces)g(of)f
(a)h(p)q(erson)f @F8 @sf(:)20 b(:)h(:)f(:)g(:)h(:)f(:)g(:)g(:)h(:)f(:)g(:)h
(:)f(:)g(:)g(:)h(:)f(:)g(:)h(:)65 b @F9 @sf(8)-1275 50 y(2.1.5)46 b
(Automated)14 b(Chec)o(ks)h(for)e(Dum)o(b)h(P)o(assw)o(ords)20 b @F8 @sf
(:)g(:)h(:)f(:)g(:)g(:)h(:)f(:)g(:)h(:)65 b @F9 @sf(8)-1275 50 y(2.1.6)46 b
(Mac)o(hine)14 b(Generated)h(P)o(assw)o(ords)40 b @F8 @sf(:)20 b(:)g(:)g
(:)h(:)f(:)g(:)h(:)f(:)g(:)g(:)h(:)f(:)g(:)h(:)65 b @F9 @sf(9)-1275 49 y
(2.1.7)46 b(The)14 b(Sorro)o(ws)h(of)e(Sp)q(ecial)h(Purp)q(ose)h(Hardw)o
(are)j @F8 @sf(:)j(:)f(:)g(:)g(:)h(:)f(:)g(:)h(:)44 b @F9 @sf(11)-1275 50 y
(2.1.8)i(Is)14 b(W)m(riting)f(P)o(assw)o(ords)h(Do)o(wn)g(that)f(Bad?)23 b
@F8 @sf(:)d(:)g(:)h(:)f(:)g(:)g(:)h(:)f(:)g(:)h(:)44 b @F9 @sf(11)-1275
50 y(2.1.9)i(The)14 b(T)m(ruth)g(ab)q(out)g(P)o(assw)o(ord)g(Aging)42 b
@F8 @sf(:)20 b(:)h(:)f(:)g(:)h(:)f(:)g(:)g(:)h(:)f(:)g(:)h(:)44 b @F9 @sf
(12)-1275 50 y(2.1.10)25 b(Ho)o(w)14 b(do)f(y)o(ou)h(c)o(hange)g(a)g
(passw)o(ord)24 b @F8 @sf(:)c(:)g(:)g(:)h(:)f(:)g(:)h(:)f(:)g(:)g(:)h(:)f
(:)g(:)h(:)44 b @F9 @sf(12)-1370 50 y(2.2)d(Old)14 b(P)o(assw)o(ord)g
(Files)20 b @F8 @sf(:)h(:)f(:)g(:)h(:)f(:)g(:)g(:)h(:)f(:)g(:)h(:)f(:)g(:)g
(:)h(:)f(:)g(:)h(:)f(:)g(:)g(:)h(:)f(:)g(:)h(:)44 b @F9 @sf(12)-1370 49 y
(2.3)d(Dorman)o(t)13 b(Accoun)o(ts)28 b @F8 @sf(:)21 b(:)f(:)g(:)h(:)f(:)g
(:)g(:)h(:)f(:)g(:)h(:)f(:)g(:)g(:)h(:)f(:)g(:)h(:)f(:)g(:)g(:)h(:)f(:)g
(:)h(:)44 b @F9 @sf(12)-1275 50 y(2.3.1)i(VMS)15 b @F8 @sf(:)21 b(:)f(:)g
(:)g(:)h(:)f(:)g(:)h(:)f(:)g(:)g(:)h(:)f(:)g(:)h(:)f(:)g(:)g(:)h(:)f(:)g
(:)h(:)f(:)g(:)g(:)h(:)f(:)g(:)h(:)44 b @F9 @sf(12)-1370 50 y(2.4)d
(Default)13 b(Accoun)o(ts)j(and)d(Ob)r(jects)j @F8 @sf(:)k(:)h(:)f(:)g(:)h
(:)f(:)g(:)g(:)h(:)f(:)g(:)h(:)f(:)g(:)g(:)h(:)f(:)g(:)h(:)44 b @F9 @sf
(13)-1275 50 y(2.4.1)i(Unix)19 b @F8 @sf(:)i(:)f(:)g(:)g(:)h(:)f(:)g(:)h
(:)f(:)g(:)g(:)h(:)f(:)g(:)h(:)f(:)g(:)g(:)h(:)f(:)g(:)h(:)f(:)g(:)g(:)h
(:)f(:)g(:)h(:)44 b @F9 @sf(14)-1275 50 y(2.4.2)i(VMS)15 b @F8 @sf(:)21 b
(:)f(:)g(:)g(:)h(:)f(:)g(:)h(:)f(:)g(:)g(:)h(:)f(:)g(:)h(:)f(:)g(:)g(:)h
(:)f(:)g(:)h(:)f(:)g(:)g(:)h(:)f(:)g(:)h(:)44 b @F9 @sf(15)-1275 49 y
(2.4.3)i(CMS)16 b @F8 @sf(:)21 b(:)f(:)g(:)g(:)h(:)f(:)g(:)h(:)f(:)g(:)g
(:)h(:)f(:)g(:)h(:)f(:)g(:)g(:)h(:)f(:)g(:)h(:)f(:)g(:)g(:)h(:)f(:)g(:)h
(:)44 b @F9 @sf(15)-1370 50 y(2.5)d(File)14 b(Protections)j @F8 @sf(:)j(:)g
(:)h(:)f(:)g(:)h(:)f(:)g(:)g(:)h(:)f(:)g(:)h(:)f(:)g(:)g(:)h(:)f(:)g(:)h
(:)f(:)g(:)g(:)h(:)f(:)g(:)h(:)44 b @F9 @sf(16)-1370 50 y(2.6)d(W)m(ell)
13 b(Kno)o(wn)h(Securit)o(y)g(Holes)35 b @F8 @sf(:)20 b(:)g(:)h(:)f(:)g(:)h
(:)f(:)g(:)g(:)h(:)f(:)g(:)h(:)f(:)g(:)g(:)h(:)f(:)g(:)h(:)44 b @F9 @sf
(17)-1370 50 y(2.7)d(New)15 b(Securit)o(y)f(Holes)i @F8 @sf(:)21 b(:)f(:)g
(:)h(:)f(:)g(:)g(:)h(:)f(:)g(:)h(:)f(:)g(:)g(:)h(:)f(:)g(:)h(:)f(:)g(:)g
(:)h(:)f(:)g(:)h(:)44 b @F9 @sf(18)-1275 50 y(2.7.1)i(CER)m(T)24 b @F8 @sf
(:)c(:)g(:)g(:)h(:)f(:)g(:)h(:)f(:)g(:)g(:)h(:)f(:)g(:)h(:)f(:)g(:)g(:)h
(:)f(:)g(:)h(:)f(:)g(:)g(:)h(:)f(:)g(:)h(:)44 b @F9 @sf(18)-1275 49 y
(2.7.2)i(ZARDOZ)28 b @F8 @sf(:)20 b(:)h(:)f(:)g(:)h(:)f(:)g(:)g(:)h(:)f(:)g
(:)h(:)f(:)g(:)g(:)h(:)f(:)g(:)h(:)f(:)g(:)g(:)h(:)f(:)g(:)h(:)44 b @F9 @sf
(18)-1275 50 y(2.7.3)i(CIA)o(C)35 b @F8 @sf(:)20 b(:)g(:)g(:)h(:)f(:)g(:)h
(:)f(:)g(:)g(:)h(:)f(:)g(:)h(:)f(:)g(:)g(:)h(:)f(:)g(:)h(:)f(:)g(:)g(:)h
(:)f(:)g(:)h(:)44 b @F9 @sf(18)-1370 50 y(2.8)d(Excess)q 15 x(Services)28 b
@F8 @sf(:)20 b(:)g(:)h(:)f(:)g(:)h(:)f(:)g(:)g(:)h(:)f(:)g(:)h(:)f(:)g(:)g
(:)h(:)f(:)g(:)h(:)f(:)g(:)g(:)h(:)f(:)g(:)h(:)44 b @F9 @sf(18)-1370 50 y
(2.9)d(Searc)o(h)15 b(P)o(aths)37 b @F8 @sf(:)20 b(:)g(:)g(:)h(:)f(:)g(:)h
(:)f(:)g(:)g(:)h(:)f(:)g(:)h(:)f(:)g(:)g(:)h(:)f(:)g(:)h(:)f(:)g(:)g(:)h
(:)f(:)g(:)h(:)44 b @F9 @sf(18)-1370 50 y(2.10)20 b(Routing)29 b @F8 @sf
(:)20 b(:)g(:)h(:)f(:)g(:)g(:)h(:)f(:)g(:)h(:)f(:)g(:)g(:)h(:)f(:)g(:)h(:)f
(:)g(:)g(:)h(:)f(:)g(:)h(:)f(:)g(:)g(:)h(:)f(:)g(:)h(:)44 b @F9 @sf(19)-1370
50 y(2.11)20 b(Humans)27 b @F8 @sf(:)20 b(:)g(:)h(:)f(:)g(:)g(:)h(:)f(:)g
(:)h(:)f(:)g(:)g(:)h(:)f(:)g(:)h(:)f(:)g(:)g(:)h(:)f(:)g(:)h(:)f(:)g(:)g
(:)h(:)f(:)g(:)h(:)44 b @F9 @sf(19)-1275 49 y(2.11.1)25 b(Managers)30 b
@F8 @sf(:)20 b(:)h(:)f(:)g(:)h(:)f(:)g(:)g(:)h(:)f(:)g(:)h(:)f(:)g(:)g(:)h
(:)f(:)g(:)h(:)f(:)g(:)g(:)h(:)f(:)g(:)h(:)44 b @F9 @sf(19)-1275 50 y
(2.11.2)25 b(Secretaries)q 43 x @F8 @sf(:)c(:)f(:)g(:)h(:)f(:)g(:)g(:)h(:)f
(:)g(:)h(:)f(:)g(:)g(:)h(:)f(:)g(:)h(:)f(:)g(:)g(:)h(:)f(:)g(:)h(:)44 b
@F9 @sf(19)-1275 50 y(2.11.3)25 b(T)m(ro)r(jan)13 b(Horses)i @F8 @sf(:)20 b
(:)g(:)h(:)f(:)g(:)g(:)h(:)f(:)g(:)h(:)f(:)g(:)g(:)h(:)f(:)g(:)h(:)f(:)g
(:)g(:)h(:)f(:)g(:)h(:)44 b @F9 @sf(20)-1275 50 y(2.11.4)25 b(Wizards)e
@F8 @sf(:)d(:)g(:)h(:)f(:)g(:)h(:)f(:)g(:)g(:)h(:)f(:)g(:)h(:)f(:)g(:)g(:)h
(:)f(:)g(:)h(:)f(:)g(:)g(:)h(:)f(:)g(:)h(:)44 b @F9 @sf(20)-1275 50 y
(2.11.5)25 b(F)m(unders)k @F8 @sf(:)20 b(:)g(:)h(:)f(:)g(:)h(:)f(:)g(:)g
(:)h(:)f(:)g(:)h(:)f(:)g(:)g(:)h(:)f(:)g(:)h(:)f(:)g(:)g(:)h(:)f(:)g(:)h
(:)44 b @F9 @sf(20)-1370 49 y(2.12)20 b(Group)14 b(Accoun)o(ts)42 b @F8 @sf
(:)20 b(:)h(:)f(:)g(:)h(:)f(:)g(:)g(:)h(:)f(:)g(:)h(:)f(:)g(:)g(:)h(:)f(:)g
(:)h(:)f(:)g(:)g(:)h(:)f(:)g(:)h(:)44 b @F9 @sf(20)-1370 50 y(2.13)20 b
(.rhosts)15 b(and)e(pro)o(xy)h(logins)29 b @F8 @sf(:)21 b(:)f(:)g(:)g(:)h
(:)f(:)g(:)h(:)f(:)g(:)g(:)h(:)f(:)g(:)h(:)f(:)g(:)g(:)h(:)f(:)g(:)h(:)44 b
@F9 @sf(21)-1370 50 y(2.14)20 b(Debugging)14 b @F8 @sf(:)20 b(:)h(:)f(:)g
(:)g(:)h(:)f(:)g(:)h(:)f(:)g(:)g(:)h(:)f(:)g(:)h(:)f(:)g(:)g(:)h(:)f(:)g
(:)h(:)f(:)g(:)g(:)h(:)f(:)g(:)h(:)44 b @F9 @sf(21)-1370 50 y(2.15)20 b
(Getting)14 b(P)o(eople)g(Mad)g(at)f(Y)m(ou)27 b @F8 @sf(:)20 b(:)g(:)h(:)f
(:)g(:)h(:)f(:)g(:)g(:)h(:)f(:)g(:)h(:)f(:)g(:)g(:)h(:)f(:)g(:)h(:)44 b
@F9 @sf(21)-1432 91 y @F5 @sf(3)38 b(Pre-Plann)o(ing)15 b(y)o(our)f
(Inciden)o(t)h(Handling)542 b(22)-1370 50 y @F9 @sf(3.1)41 b(Goals)f @F8 @sf
(:)21 b(:)f(:)g(:)h(:)f(:)g(:)g(:)h(:)f(:)g(:)h(:)f(:)g(:)g(:)h(:)f(:)g(:)h
(:)f(:)g(:)g(:)h(:)f(:)g(:)h(:)f(:)g(:)g(:)h(:)f(:)g(:)h(:)44 b @F9 @sf
(22)-1275 50 y(3.1.1)i(Main)o(taining)12 b(and)i(restoring)g(data)24 b
@F8 @sf(:)c(:)g(:)g(:)h(:)f(:)g(:)h(:)f(:)g(:)g(:)h(:)f(:)g(:)h(:)44 b
@F9 @sf(22)-1275 50 y(3.1.2)i(Main)o(taining)12 b(and)i(restoring)g
(service)j @F8 @sf(:)j(:)g(:)h(:)f(:)g(:)h(:)f(:)g(:)g(:)h(:)f(:)g(:)h(:)
44 b @F9 @sf(23)-1275 49 y(3.1.3)i(Figuring)13 b(ho)o(w)g(it)h(happ)q
(enned)35 b @F8 @sf(:)20 b(:)h(:)f(:)g(:)g(:)h(:)f(:)g(:)h(:)f(:)g(:)g(:)h
(:)f(:)g(:)h(:)44 b @F9 @sf(23)-727 167 y(1)-988 b
1 @eop1
0 @bop0
/@F0 @newfont
@F0 @sf
[<
00003FE0000001FFFC000007F00F00001F800380003E0000C0007800002000F000001001E0
00000803C000000807800000040F800000060F000000021F000000021E000000013E000000
013C000000017C000000017C000000017C000000007800000000F800000000F800000000F8
00000000F800000000F800000000F800000000F800000000F800000000F800000000F80000
0000F80000000078000000007C000000017C000000017C000000013C000000013E00000003
1E000000031F000000030F000000070F80000007078000000F03C000000F01E000001F00F0
00002F007800004F003E000087001F8003070007F01E030001FFF80300003FE001>
40 51 -4 49 48] 67 @dc
[<
001FC00000F0780001C01C0007800F000F0007801E0003C01E0003C03C0001E03C0001E07C
0001F0780000F0F80000F8F80000F8F80000F8F80000F8F80000F8F80000F8F80000F8F800
00F8780000F0780000F0780000F03C0001E03C0001E01C0001C01E0003C00F000780070007
0001C01C0000F07800001FC000>
29 31 -2 30 33] 111 @dc
[<
FFFC0000FFFC00000FC0000007800000078000000780000007800000078000000780000007
800000078000000780000007800000078000000781F80007860F000798038007A001E007A0
00F007C000F0078000780780007C0780003C0780003E0780003E0780001F0780001F078000
1F0780001F0780001F0780001F0780001F0780001F0780001F0780001E0780003E0780003C
0780003C0780007807C0007807A000F00F9001E0FF8803C0FF8607000781FC00>
32 45 -2 30 37] 112 @dc
[<
FFF8FFF80FC007800780078007800780078007800780078007800780078007800780078007
80078007800780078007800780078007800F80FF80FF800780000000000000000000000000
0000000000000000000007000F801F801F800F800700>
13 48 -2 47 18] 105 @dc
[<
FFFC1FFF80FFFC1FFF800FC001F800078000F000078000F000078000F000078000F0000780
00F000078000F000078000F000078000F000078000F000078000F000078000F000078000F0
00078000F000078000F000078000F000078000F000078000F000078000F000078000F00007
8000F00007C000F00007C000F00007A000F00007A001E0000F9001E000FF8C03C000FF8307
80000780FE0000>
33 31 -2 30 37] 110 @dc
[<
003FE00001C01C00070007001C0001C0380000E07000007070000070E0000038E0000038E0
000038E0000038E000003870000070300000F0180001E00E000FC003FFFF8007FFFF000FFF
F8000E0000001C0000001800000018000000180000001800000018000000087F000009C1C0
000780E000070070000F0078001E003C001E003C003E003E003E003E003E003E003E003E00
3E003E003E003E001E003C001E003C000F007800070070080380E81C01C1C41C007F030800
0000F0>
30 47 -2 31 33] 103 @dc
[<
000200010000000600018000000700038000000700038000000F0003C000000F8007C00000
0F8007C000001E80072000001E400F2000001E400F2000003C400E1000003C201E1000003C
201E10000078201C08000078103C08000078103C080000F01038040000F00878040000F008
78040001E00870020001E004F0020001E004F0020003C007E0010003C003E0010003C003E0
0100078003C00080078003C000800F8003C001C00FC007C003F0FFF07FF80FFCFFF07FF80F
FC>
46 31 -1 30 48] 119 @dc
[<
001F000078C000E04001E02001C02003C01003C01003C01003C01003C01003C01003C01003
C01003C00003C00003C00003C00003C00003C00003C00003C00003C00003C00003C00003C0
0003C00003C00003C00003C000FFFFE01FFFE00FC00007C00003C00001C00001C00000C000
00C00000C000004000004000004000004000004000>
20 44 -1 43 25] 116 @dc
[<
FFFC1FFF80FFFC1FFF800FC001F800078000F000078000F000078000F000078000F0000780
00F000078000F000078000F000078000F000078000F000078000F000078000F000078000F0
00078000F000078000F000078000F000078000F000078000F000078000F000078000F00007
8000F00007C000F00007C000F00007A000F00007A001E000079001E000078C03C000078307
80000780FE0000078000000007800000000780000000078000000007800000000780000000
07800000000780000000078000000007800000000780000000078000000007800000000780
00000007800000000F80000000FF80000000FF800000000780000000>
33 50 -2 49 37] 104 @dc
[<
001FC00000F0300001C00C00078002000F0002000E0001001E0000803C0000803C0000007C
00000078000000F8000000F8000000F8000000F8000000F8000000F8000000FFFFFF80F800
0780F80007807800078078000F807C000F003C000F001C000F001E001E000E001E0007003C
000380380000E0E000003F8000>
25 31 -2 30 29] 101 @dc
[<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>
44 49 -2 48 48] 84 @dc
[<
FFFE00FFFE000FC00007800007800007800007800007800007800007800007800007800007
800007800007800007800007800007800007800007800007800007800007C00007C00007C0
0007C03807A07C0F907CFF907CFF8C180783E0>
22 31 -2 30 25] 114 @dc
[<
03FC03E00F0307F03E008F087C005E0478003E04F8003E04F8003E04F8001E04F8001E04F8
001E047C001E003C001E003E001E001F001E000F801E0003E01E0000FC1E00000FFE000000
1E0000001E0000001E0008001E003E001E003E001E003E001C003C003C0010003800100070
000C00E0000303C00000FE0000>
30 31 -3 30 33] 97 @dc
[<
7FFF007FFF0007E00003C00003C00003C00003C00003C00003C00003C00003C00003C00003
C00003C00003C00003C00003C00003C00003C00003C00003C00003C00003C00003C00003C0
0003C00003C00003C00003C000FFFFC0FFFFC003C00003C00003C00003C00003C00003C000
03C00003C00003C00003C00003C00003C00001C03801E07C00E07C00707C003838001C1000
07E0>
22 50 -1 49 20] 102 @dc
[<
FFFC1FFF83FFF0FFFC1FFF83FFF00FC001F8003F00078000F0001E00078000F0001E000780
00F0001E00078000F0001E00078000F0001E00078000F0001E00078000F0001E00078000F0
001E00078000F0001E00078000F0001E00078000F0001E00078000F0001E00078000F0001E
00078000F0001E00078000F0001E00078000F0001E00078000F0001E00078000F0001E0007
8000F0001E00078000F0001E0007C000F8001E0007C000F8001E0007A000F4001E0007A001
E4003C000F9001E2003C00FF8C03C1807800FF83078060F0000780FE001FC000>
52 31 -2 30 55] 109 @dc
[<
001FC0FF80007030FF8001C008F80003C004F000038002F000078001F000078001F0000780
01F000078000F000078000F000078000F000078000F000078000F000078000F000078000F0
00078000F000078000F000078000F000078000F000078000F000078000F000078000F00007
8000F000078000F000078000F000078000F000078000F0000F8001F000FF801FF000FF801F
F000078000F000>
33 31 -2 30 37] 117 @dc
[<
800FF000807FFC00C1F01E00C7000700EC000380F80001C0F00000E0E00000E0E00000F0C0
000070C00000788000007880000078800000788000007880000078000000F8000000F80000
00F0000001F0000003F0000007E000001FE00000FFC0000FFF8000FFFF0003FFFC0007FFF8
000FFF80001FF800003FC000003F0000007E0000007C000000F8000000F8000020F0000020
F0000020F0000020F0000060F000006070000060700000E0780000E0380001E03C0003E01E
0006E00F001C6007C0786001FFE020007F8020>
29 51 -4 49 37] 83 @dc
[<
003F8000E0600380180700040F00021E00021E00013C00017C00007C0000780000F80000F8
0000F80000F80000F80000F80000F80000F80000F800007800007C00087C003E3C003E1C00
3E1E001E0F000407000403801800E060003F80>
24 31 -3 30 29] 99 @dc
[<
1F8000000030400000007030000000F810000000F808000000F80C00000070040000000004
00000000020000000002000000000100000000010000000001000000000080000000008000
000001C000000001C000000001C000000003E000000003E000000007D00000000790000000
07900000000F080000000F080000001F040000001E040000001E040000003C020000003C02
0000007C0100000078010000007801000000F000800000F000800001F000400001E0004000
01E000400003C000200003C000200007C000300007800038000FC0007C00FFF801FF80FFF8
01FF80>
33 45 -1 30 35] 121 @dc
[<
FFFF80FFFF8007F00003E00003E00003E00003E00003E00003E00003E00003E00003E00003
E00003E00003E00003E00003E00003E00003E00003E00003E00003E00003E00003E00003E0
0003E00003E00003E00003E00003E00003E00003E00003E00003E00003E00003E00003E000
03E00003E00003E00003E00003E00003E00003E00003E00003E00007F000FFFF80FFFF80>
17 49 -3 48 23] 73 @dc
[<
003F81FF00E061FF038011F0070009E00E0005E01E0003E01C0001E03C0001E03C0001E078
0001E0780001E0F80001E0F80001E0F80001E0F80001E0F80001E0F80001E0F80001E0F800
01E0F80001E0780001E07C0001E03C0001E03C0001E01E0001E00E0003E00F0003E0078005
E001C019E000F061E0001F81E0000001E0000001E0000001E0000001E0000001E0000001E0
000001E0000001E0000001E0000001E0000001E0000001E0000001E0000001E0000001E000
0003E000003FE000003FE0000001E0>
32 50 -3 49 37] 100 @dc
[<
80FE00C301C0CC0060F00030F00038E00018E0001CC0001CC0001C80001C80003C80003C00
00F80001F8003FF003FFE00FFFC01FFF003FF0007E0000F80000F00010E00010E00010E000
10E000306000303000701800F00E033001FC10>
22 31 -2 30 26] 115 @dc
[<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>
46 50 -2 49 50] 65 @dc
[<
FFFF800000FFFF80000007F000000003E000000003E000000003E000000003E000000003E0
00000003E000000003E000000003E000000003E000000003E000000003E000000003E00000
0003E000000003E000000003E000000003E000000003E000000003E000000003E000000003
E000000003E000000003FFFFF00003E0007C0003E0001F0003E000078003E00003C003E000
03E003E00001E003E00001F003E00000F003E00000F803E00000F803E00000F803E00000F8
03E00000F803E00000F803E00000F003E00001F003E00001F003E00001E003E00003C003E0
00078003E0001F0007E0007E00FFFFFFF800FFFFFFC000>
37 49 -4 48 45] 80 @dc
[<
00008000000001C000000001C000000001C000000003E000000003E000000007D000000007
9000000007900000000F080000000F080000001F040000001E040000001E040000003C0200
00003C020000007C0100000078010000007801000000F000800000F000800001F000400001
E000400001E000400003C000200003C000200007C000300007800038000FC0007C00FFF801
FF80FFF801FF80>
33 31 -1 30 35] 118 @dc
[<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>
45 50 -4 48 49] 82 @dc
/@F3 @newfont
@F3 @sf
[<
0000007C00FFFC01E2000FC003C100078007C08007800FC08007800F808007800F80000780
0F800007800F800007800F000007800F000007800F000007800F000007800E000007801E00
0007801C00000780380000078070000007FFE0000007803C000007800E0000078007800007
8007C000078003C000078003E000078003E000078003E000078003E000078003E000078003
C000078007C000078007800007800E00000F803C0000FFFFE00000>
33 35 -2 33 36] 82 @dc
[<
00FC7F0382780601700E00F00E00F00E00700E00700E00700E00700E00700E00700E00700E
00700E00700E00700E00700E00700E00701E00F0FE07F00E0070>
24 21 -1 20 27] 117 @dc
[<
8FC0D030E018C008C00C800C800C801C003C01F80FF03FE07F80F000E008C008C008C01860
1830780F88>
14 21 -2 20 19] 115 @dc
[<
00FC000703000E00801C0040380020780020700000F00000F00000F00000F00000F00000FF
FFE0F000E07000E07801E03801C01C01C00C038007070001FC00>
19 21 -1 20 22] 101 @dc
[<
FFE00E000E000E000E000E000E000E000E000E000E000E000E000E000E000E000E000E000E
000E000E000E000E000E000E000E000E000E000E000E000E000E001E00FE000E00>
11 35 -1 34 14] 108 @dc
[<
FFFFFF000F803F0007800F0007800300078003000780010007800180078001800780008007
80008007800080078000800780000007800000078000000780000007800000078000000780
00000780000007800000078000000780000007800000078000000780000007800000078000
00078000000780000007800000078000000FC00000FFFE0000>
25 34 -2 33 30] 76 @dc
[<
70F8F8F870>
5 5 -4 4 14] 46 @dc
[<
FFFFFC000F800F00078007C0078003E0078001F0078001F0078000F8078000F8078000F807
8000F8078000F8078000F8078000F0078001F0078001E0078003C00780078007FFFE000780
3E0007800F80078007C0078003E0078001E0078001F0078001F0078001F0078001F0078001
F0078001E0078003E0078003C0078007800F800E00FFFFF800>
29 34 -2 33 35] 66 @dc
[<
FFF00F000E000E000E000E000E000E000E000E000E000E000E000E000E000F000F060F0F1E
8FFE460E3C>
16 21 -1 20 19] 114 @dc
[<
0FC1E03C2390781708F00F08F00708F00708F007087007007807003C07001E070007C70000
FF000007000007000007001807003C0E003C0C001838000FE000>
21 21 -2 20 24] 97 @dc
[<
FFE7FF0E00700E00700E00700E00700E00700E00700E00700E00700E00700E00700E00700E
00700E00700E00700E00700F00700F00701E80E0FE60C00E1F80>
24 21 -1 20 27] 110 @dc
[<
01F0FE070CF00C02E01801E03800E07800E07000E0F000E0F000E0F000E0F000E0F000E0F0
00E0F000E07000E07800E03800E01C01E00C02E00704E001F8E00000E00000E00000E00000
E00000E00000E00000E00000E00000E00000E00000E00001E0000FE00000E0>
23 35 -2 34 27] 100 @dc
/@F13 @newfont
@F13 @sf
[<
020002000200C218F2783AE00F800F803AE0F278C218020002000200>
13 14 -2 14 18] 3 @dc
@F3 @sf
[<
07C000187000203800401C00F01E00F80E00F80F00F80F00700F00000F00000F00000F0000
0F00000F00000F00000F00000F00000F00000F00000F00000F00000F00000F00000F00000F
00000F00000F00000F00000F00000F00000F00000F00000F00001F0003FFF0>
20 35 -2 33 25] 74 @dc
[<
03F0000E0E001803003000806000C0600040C00060C00060C00060C00060C000E06000E060
01C03007C0100F80083F80067F0003FC0003F8000FF8001FC4003F02003E01007801807000
C06000C06000C06000C02000C0200180100180080300060E0001F800>
19 34 -2 32 24] 56 @dc
[<
4020101008080404040474FCFCF870>
6 15 -4 4 14] 44 @dc
[<
FFFE07C0038003800380038003800380038003800380038003800380038003800380038003
800380038003800380038003800380038003800380F3800F8003800080>
15 33 -4 32 24] 49 @dc
[<
0FC000103000201800700C007806007807003003000003800003800001C00001C00001C003
E1E00619E00C05E01805E03803E07003E07001E0F001E0F001E0F001E0F001E0F001E0F001
C0F001C0F001C07003807003803803801807000C0600060C0001F000>
19 34 -2 32 24] 57 @dc
[<
01F000071C000C06001C07003803803803807803C07001C07001C07001C0F001E0F001E0F0
01E0F001E0F001E0F001E0F001E0F001E0F001E0F001E0F001E0F001E0F001E0F001E07001
C07001C07001C07001C03803803803801803000C0600071C0001F000>
19 34 -2 32 24] 48 @dc
/@F11 @newfont
@F11 @sf
[<
FFC07FFCFFC07FFC0E000FC006000F8006000F8003001F0003001F0003FFFF0001FFFE0001
803E0000C07C0000C07C0000E0FC000060F8000060F8000031F0000031F000001BE000001B
E000001BE000000FC000000FC00000078000000780000007800000030000>
30 26 -1 25 33] 65 @dc
[<
187F001D83C01F00E01E00F01E00781E00781E007C1E007C1E007C1E007C1E007C1E00781E
00781E00F01F00E01FC3C01E7F001E00001E00001E00001E00001E00001E00001E0000FE00
00FE0000>
22 26 -1 25 25] 98 @dc
[<
CFE0F830E008E00CC00CC00C003C07F83FF87FE0FF80F000C030C030403020701FB0>
14 17 -1 16 17] 115 @dc
[<
03E00F301E181E181E181E181E181E001E001E001E001E001E001E001E00FFF03FF01E000E
000E000600060006000600>
13 24 -1 23 17] 116 @dc
[<
FFC0FFC01E001E001E001E001E001E001E001E001E001E1C1E3E1D3E1D3EFC9CFC78>
15 17 -1 16 18] 114 @dc
[<
1FC3E07C27E0F81700F80F00F80F00F80F007C0F003E0F000FCF0000FF00000F001C0F003E
0F003E0E003E1E001C3C000FF000>
19 17 -1 16 21] 97 @dc
[<
03FC000F06001C03003C0180780000780000F80000F80000F80000F80000F80000780E0078
1F003C1F001C1F000F0E0003FC00>
17 17 -1 16 20] 99 @dc
/@F12 @newfont
@F12 @sf
[<
FF00FFC01C001E0008001C0008001C00040038000400380006007800020070000200700001
FFE0000100E0000100E0000081C0000081C0000081C0000043800000438000004380000027
000000270000003F0000001E0000001E0000000C0000000C0000000C0000>
26 26 -1 25 29] 65 @dc
[<
8F80F040C020C0308030807000F01FE03FC07F00F000C020C020402060E01F20>
12 16 -1 15 15] 115 @dc
[<
07E00C18380830047000E000E000E000E000E000E00070003008381C0C1C07F8>
14 16 -1 15 17] 99 @dc
[<
07E01C38381C700E6006E007E007E007E007E007E0076006700E300C1C3807E0>
16 16 -1 15 19] 111 @dc
[<
FF9FE7F81C0701C01C0701C01C0701C01C0701C01C0701C01C0701C01C0701C01C0701C01C
0701C01C0701C01C0701C01E0781C01E0781C01D8E6380FC7C1F00>
29 16 -1 15 32] 109 @dc
[<
FF80001C00001C00001C00001C00001C00001C00001CF0001F0C001E07001C03001C03801C
01C01C01C01C01C01C01C01C01C01C01C01C03801C03801E07001F0E00FCF800>
18 23 -1 15 21] 112 @dc
[<
07CFC00C2E001C1E001C0E001C0E001C0E001C0E001C0E001C0E001C0E001C0E001C0E001C
0E001C0E001C0E00FC7E00>
18 16 -1 15 21] 117 @dc
[<
03800E401C201C201C201C201C201C001C001C001C001C001C001C001C00FFC03C001C000C
000C00040004000400>
11 23 -1 22 15] 116 @dc
[<
07E00C18380830046000E000E000E000E000FFFCE00C600C701830181C3007C0>
14 16 -1 15 17] 101 @dc
[<
FFC01C001C001C001C001C001C001C001C001C001C001C001E201E701D70FCE0>
12 16 -1 15 15] 114 @dc
[<
FF801C001C001C001C001C001C001C001C001C001C001C001C001C001C00FC000000000000
0000000000000018003C003C001800>
9 26 0 25 11] 105 @dc
[<
780000E40000E20000E1000001000001000000800000800001C00001C00001C00003A00003
A0000790000710000710000E08000E08001E0C001C04001C04003C0600FF1F80>
17 23 -1 15 20] 121 @dc
[<
10F0001B0C001E07001C03001C03801C01C01C01C01C01C01C01C01C01C01C01C01C01801C
03801E07001F0E001CF8001C00001C00001C00001C00001C00001C00001C00001C00001C00
00FC0000>
18 26 -1 25 21] 98 @dc
[<
1E3C71FBE0F1E071E071E070707030701C7007F000700070207070E070C03F80>
16 16 -2 15 19] 97 @dc
[<
FF9FC01C0E001C0E001C0E001C0E001C0E001C0E001C0E001C0E001C0E001C0E001C0E001E
0E001E0E001D0C00FCF800>
18 16 -1 15 21] 110 @dc
[<
07CFC01C2E00381E00700E00600E00E00E00E00E00E00E00E00E00E00E00E00E00700E0030
0E00380E000C3E0003CE00000E00000E00000E00000E00000E00000E00000E00000E00000E
00007E00>
18 26 -1 25 21] 100 @dc
[<
FFC0FFC0>
10 2 0 8 13] 45 @dc
[<
8040202010101070F0F060>
4 11 -3 3 11] 44 @dc
[<
07E0381C6006C003C003C003C003600F1FFE3FFC3FF07000600020002FC018603030703870
3870387038303018730FCE>
16 24 -1 15 19] 103 @dc
[<
010040000180C0000380E0000380E00003C1E0000741D000074190000F2398000E2388000E
2308001E170C001C1704001C160400380E06003C0E0700FF3F9F80>
25 16 -1 15 28] 119 @dc
[<
FF9FC01C0E001C0E001C0E001C0E001C0E001C0E001C0E001C0E001C0E001C0E001C0E001E
0E001E0E001D0C001CF8001C00001C00001C00001C00001C00001C00001C00001C00001C00
00FC0000>
18 26 -1 25 21] 104 @dc
[<
60F0F060>
4 4 -3 3 11] 46 @dc
[<
03FFE000001C0000001C0000001C0000001C0000001C0000001C0000001C0000001C000000
1C0000001C0000001C0000001C0000001C0000001C0000001C0000001C0000001C0000801C
0080801C0080801C0080C01C0180401C0100401C0100701C07007FFFFF00>
25 26 -1 25 28] 84 @dc
[<
00800001C00001C00001C00003A00003A0000790000710000710000E08000E08001E0C001C
04001C04003C0600FF1F80>
17 16 -1 15 20] 118 @dc
[<
7E00E300E18041C001C001C001C001C001C001C001C001C001C001C001C001C001C001C001
C001C001C001C00FC0000000000000000000000000018003C003C00180>
10 33 2 25 12] 106 @dc
[<
7FE00E000E000E000E000E000E000E000E000E000E000E000E000E000E00FFC00E000E000E
000E000E000E000E100738031801F0>
13 26 0 25 12] 102 @dc
[<
FF801C001C001C001C001C001C001C001C001C001C001C001C001C001C001C001C001C001C
001C001C001C001C001C001C00FC00>
9 26 0 25 11] 108 @dc
[<
FC3FC0381E00181C0008380004380002700003E00001E00001C00003C0000760000720000E
10001C18003C1C00FF3F80>
18 16 -1 15 20] 120 @dc
[<
7F0FF00E07000E07000E07000E07000E07000E07000E07000E07000E07000E07000E07000E
07000E07000E0700FFFFF00E07000E07000E07000E07000E07000E070006070407078E0183
C600FC7C>
23 26 0 25 22] 11 @dc
[<
7F0FE00E07000E07000E07000E07000E07000E07000E07000E07000E07000E07000E07000E
07000E07000E0700FFFF000E00000E00000E00000E00000E00000E02000607000703000182
0000FC00>
19 26 0 25 21] 12 @dc
/@F15 @newfont
@F15 @sf
[<
0C000C008C40EDC07F800C007F80EDC08C400C000C00>
10 11 -3 11 16] 3 @dc
/@F14 @newfont
@F14 @sf
[<
00FC000383000E00801C0040380020300020700010600010E00010E00000E00000E00000E0
0000E00000E000106000107000103000303800301C00700E00B003833000FC10>
20 23 -2 22 25] 67 @dc
[<
07C018303018701CE00EE00EE00EE00EE00E600C600C3018183007C0>
15 14 -1 13 18] 111 @dc
[<
FF80001C00001C00001C00001C00001C00001CF8001F0E001C07001C03801C01801C01C01C
01C01C01C01C01C01C01801C03801C03001F0E00FCF800>
18 20 0 13 20] 112 @dc
[<
7800A400E200E200010001000180018003C003C003C0072007200E100E101C081C083C0C3C
0EFE1F>
16 20 -1 13 19] 121 @dc
[<
FF801C001C001C001C001C001C001C001C001C001C101E381D38FCF0>
13 14 0 13 14] 114 @dc
[<
FF1C1C1C1C1C1C1C1C1C1C1C1C7C0000000000183C3C18>
8 23 0 22 10] 105 @dc
[<
0FE03838600CC006C006C006600E3FFC3FF83FE0600020002F8018C0306070707070707030
6018E30F9E>
16 21 -1 13 18] 103 @dc
[<
FF9FE01C07001C07001C07001C07001C07001C07001C07001C07001C07001C07001E07001D
8E001C7C001C00001C00001C00001C00001C00001C00001C00001C0000FC0000>
19 23 0 22 20] 104 @dc
[<
0F001C8038403840384038403800380038003800380038003800FF80380018001800080008
000800>
10 20 -1 19 14] 116 @dc
[<
07C01830300870086000E000E000E000E000600070103038183807F0>
13 14 -1 13 16] 99 @dc
@F13 @sf
[<
000FC000007FF80001F03E0003800700060001800C0000C018000060300000303000003060
00001860000018C000000CC000000CC000000CC000000CC000000CC000000CC000000C6000
0018600000183000003030000030180000600C0000C0060001800380070001F03E00007FF8
00000FC000>
30 29 -2 22 35] 13 @dc
@F14 @sf
[<
FF803C1C00721C00E11C00E11C00E01C00E01C00E01C00E01C00E01C01C01C07801FFE001C
03801C00C01C00E01C00701C00701C00701C00701C00E01C00C01C0380FFFC00>
24 23 -1 22 26] 82 @dc
[<
03E7E00E17001C0F001C07001C07001C07001C07001C07001C07001C07001C07001C07001C
0700FC3F00>
19 14 0 13 20] 117 @dc
[<
9F00E0C0C0608060806001E01FC07F80FF00E000C040C04060C01F40>
11 14 -1 13 14] 115 @dc
[<
07C01830301070086000E000E000E000FFF8E0187038303018600FC0>
13 14 -1 13 16] 101 @dc
[<
FF801C001C001C001C001C001C001C001C001C001C001C001C001C001C001C001C001C001C
001C001C001C00FC00>
9 23 0 22 10] 108 @dc
[<
FFFFC01C03C01C00C01C00401C00601C00601C00201C00201C00201C00001C00001C00001C
00001C00001C00001C00001C00001C00001C00001C00001C00001C0000FFC000>
19 23 -1 22 22] 76 @dc
[<
60F0F060>
4 4 -3 3 10] 46 @dc
[<
FFFF001C01C01C00E01C00701C00381C00381C00381C00381C00301C00701C00E01FFFC01F
FF801C01C01C00E01C00701C00701C00701C00701C00601C00E01C0380FFFE00>
21 23 -1 22 25] 66 @dc
[<
1F1E70FFE079E039E039703830381E3803F800381038383038601FC0>
16 14 -1 13 18] 97 @dc
[<
FF9FE01C07001C07001C07001C07001C07001C07001C07001C07001C07001C07001E07001D
8E00FC7C00>
19 14 0 13 20] 110 @dc
[<
07CFC0182E00301E00700E00600E00E00E00E00E00E00E00E00E00600E00700E00300E001C
3E0007CE00000E00000E00000E00000E00000E00000E00000E00000E00007E00>
18 23 -1 22 20] 100 @dc
[<
7FF007000700070007000700070007000700070007000700070007000700070007000700FF
0007000300>
12 21 -2 20 18] 49 @dc
[<
1F8020C0603070187018001C000C000E0F8E186E301E601EE00EE00EE00EE00CE00C601830
18183007C0>
15 21 -1 20 18] 57 @dc
[<
0FE03830600CC004C006C006C00E601E607C18F80FF00FC01F603E107818700C600C600C20
18183007E0>
15 21 -1 20 18] 56 @dc
[<
40402020101070F0F060>
4 10 -3 3 10] 44 @dc
[<
07C01C703018701C600C600CE00EE00EE00EE00EE00EE00EE00EE00EE00E600C600C701C30
18183007C0>
15 21 -1 20 18] 48 @dc
[<
FF80001C00001C00001C00001C00001C00001C00001C00001C00001C00001C00001FFE001C
03801C00C01C00601C00701C00701C00701C00701C00601C00C01C0380FFFE00>
20 23 -1 22 24] 80 @dc
[<
FF9FE7F81C0701C01C0701C01C0701C01C0701C01C0701C01C0701C01C0701C01C0701C01C
0701C01C0701C01E0781C01D8E6380FC7C1F00>
29 14 0 13 29] 109 @dc
[<
10F8001B0E001C03001C03801C01801C01C01C01C01C01C01C01C01C01801C03801C03001F
06001CF8001C00001C00001C00001C00001C00001C00001C00001C0000FC0000>
18 23 0 22 20] 98 @dc
[<
FF801C001C001C001C001C001C001C001C001C001C001C001C00FF801C001C001C001C001C
001C200E70067003E0>
12 23 0 22 11] 102 @dc
[<
FF80FF80>
9 2 0 7 12] 45 @dc
[<
0303000303000703800787800787800E86400E4E400E4E401C4C201C3C201C3C2038381038
3838FCFE7C>
22 14 -1 13 25] 119 @dc
[<
0180018003C003C003C0072007200E100E101C081C083C0C3C0EFE1F>
16 14 -1 13 19] 118 @dc
[<
07FFC000380000380000380000380000380000380000380000380000380000380000380000
38000038000038000038008038048038048038044038084038086038187FFFF8>
22 23 -1 22 25] 84 @dc
[<
FC7F383C1838087004F002E001C0038007C007400E201C103C18FE3F>
16 14 -1 13 19] 120 @dc
[<
1F006180C1C0E0E0E0E000E000E000E000E000E000E000E000E000E000E000E000E000E000
E000E000E000E00FFC>
14 23 -2 22 18] 74 @dc
[<
40402020101070F0F06000000000000060F0F060>
4 20 -3 13 10] 59 @dc
0 @eop0
0 0 0 @bop1 314 482 a @F0 @sf(Coping)21 b(with)g(the)h(Threat)g(of)g
(Computer)g(Securit)n(y)-793 91 y(Inciden)n(ts)-772 91 y(A)f(Primer)i
(from)f(Prev)n(en)n(tion)g(through)f(Reco)n(v)n(ery)-830 121 y @F3 @sf
(Russell)15 b(L.)i(Brand)16 -18 y @F13 @sf(\003)-340 115 y @F3 @sf(June)f
(8,)g(1990)q -218 191 a @F11 @sf(Abstract)-638 65 y @F12 @sf(As)e
(computer)g(securit)o(y)h(b)q(ecomes)f(a)g(more)g(imp)q(ortan)o(t)h(issue)f
(in)g(mo)q(dern)h(so-)-1225 45 y(ciet)o(y)m(,)g(it)g(b)q(egins)h(to)f(w)o
(arran)o(t)g(a)h(systematic)f(approac)o(h.)25 b(The)15 b(v)n(ast)h(ma)r
(jorit)o(y)f(of)-1225 46 y(the)g(computer)h(securit)o(y)f(problems)g(and)h
(the)f(costs)g(asso)q(ciated)h(with)e(them)h(can)-1224 46 y(b)q(e)d(prev)o
(en)o(ted)h(with)e(simple)g(inexp)q(ensiv)o(e)i(measures.)k(The)11 b(most)h
(imp)q(ortan)o(t)g(and)-1224 45 y(cost)i(e\013ectiv)o(e)g(of)g(these)g
(measures)g(are)g(a)o(v)n(ailable)g(in)g(the)f(prev)o(en)o(tion)i(and)g
(plan-)-1225 46 y(ning)f(phases.)19 b(These)13 b(metho)q(ds)i(are)e
(presen)o(ted)h(follo)o(w)o(ed)f(b)o(y)h(a)f(simpli\014ed)g(guide)-1224
46 y(to)g(inciden)o(t)g(handling)h(and)g(reco)o(v)o(ery)m(.)-675 1057 y
573 -2 z 45 27 a @F15 @sf(\003)2 12 y @F14 @sf(Cop)o(yrigh)o(t)o 20 -1 a
(c)-26 1 y @F13 @sf(\015)e @F14 @sf(Russell)e(L.)h(Brand)f(1989,)g(1990)g
(P)o(ermission)g(to)h(cop)o(y)f(and)g(redistri)o(but)o(e)g(this)g(infor-)
-1433 39 y(mation)f(in)h(whole)h(or)f(in)g(part)g(is)g(gran)o(ted)o 10 x
(pro)o(vid)o(ed)f(eac)o(h)g(cop)o(y)h(include)o(s)f(attributi)o(on)g(and)h
(the)g(v)o(ersion)o -1433 40 a(informat)o(ion)o(.)23 b(This)14 b(p)q
(ermission)f(extends)g(for)h(one)f(y)o(ear)g(min)o(us)h(one)g(da)o(y)g
(from)g(June)f(8,)i(1990;)g(past)-1433 39 y(that)9 b(p)q(oin)o(t,)g(the)g
(reader)g(should)g(obtain)g(a)h(new)o(er)g(cop)o(y)f(of)h(the)g(article)o
9 x(as)h(the)e(informatio)o(n)g(will)i(b)q(e)f(out)-1433 39 y(of)h(date.)
587 125 y @F9 @sf(0)-988 b
0 @eop1
Very nice! Thank you for this wonderful archive. I wonder why I found it only now. Long live the BBS file archives!
This is so awesome! 😀 I’d be cool if you could download an entire archive of this at once, though.
But one thing that puzzles me is the “mtswslnkmcjklsdlsbdmMICROSOFT” string. There is an article about it here. It is definitely worth a read: http://www.os2museum.com/wp/mtswslnk/