On Tue, 30 Dec 2008 18:53:05 EST, Bruce Potter said: > This rabbit hole goes very deep indeed. Here's a study from 1972 that > is still relevant today (unfortunately) > > http://seclab.cs.ucdavis.edu/projects/history/papers/ande72a.pdf > http://seclab.cs.ucdavis.edu/projects/history/papers/ande72.pdf
Karger&Schell (of the Multics pentest paper fame) did a 30-years-later paper, in which they basically concluded that we've regressed in the 3 decades since... http://www.acsac.org/2002/papers/classic-multics.pdf (And if anybody here *still* hasn't read the original, it's at http://www.acsac.org/2002/papers/classic-multics-orig.pdf) Trivia: That's the "unnamed Air Force document" Thompson referenced in "On Trusting Trust"...
pgpgue0myanKE.pgp
Description: PGP signature
_______________________________________________ Fun and Misc security discussion for OT posts. https://linuxbox.org/cgi-bin/mailman/listinfo/funsec Note: funsec is a public and open mailing list.
