I guess I don't see anyone breaking into the class G guest if the class G guest doesn't a password and is logon by only by the systems programmers with her password. I guess in theory they could somehow get to cp by linux, but then he'd already have the NIC anyway.
I guess we'll hear about the new stuff soon :) Marcy Cortes (415) 243-6343 "This message may contain confidential and/or privileged information. If you are not the addressee or authorized to receive this for the addressee, you must not use, copy, disclose, or take any action based on this message or any information herein. If you have received this message in error, please advise the sender immediately by reply e-mail and delete this message. Thank you for your cooperation." -----Original Message----- From: Linux on 390 Port [mailto:[EMAIL PROTECTED] On Behalf Of Alan Altmark Sent: Friday, February 10, 2006 12:37 PM To: [email protected] Subject: Re: [LINUX-390] First install of RedHat under z/VM On Friday, 02/10/2006 at 11:39 CST, Marcy Cortes <[EMAIL PROTECTED]> wrote: > I tend to agree with Rich. No one here gets an ID on a VM IFL system > except the systems programmers. We all have privileges anyway and > know how to use them :) But it's not about the systems programmers - it's about what happens when someone breaks into your class G guest. For a sandbox, "shields down" is fine, but for production environments, I'm not quite so ready to agree. <tantalizing_tidbit> We've got some really neat-o keen stuff coming down the pike that I think will satisfy both sides of the discussion, providing ease of use for the sysprog while still maintaing an ACL (access control list) philosophy adored by us totalitarian security weasels. </tantalizing_tidbit> Alan Altmark z/VM Development IBM Endicott ---------------------------------------------------------------------- For LINUX-390 subscribe / signoff / archive access instructions, send email to [EMAIL PROTECTED] with the message: INFO LINUX-390 or visit http://www.marist.edu/htbin/wlvindex?LINUX-390 ---------------------------------------------------------------------- For LINUX-390 subscribe / signoff / archive access instructions, send email to [EMAIL PROTECTED] with the message: INFO LINUX-390 or visit http://www.marist.edu/htbin/wlvindex?LINUX-390
