I don't know about NYU, but we have a gaggle of personal machines in computer
labs and offices. We haven't determined any way to guarantee such complete
control over these machines that nobody, on any machine, at any time, can ever
run evil software. Perhaps some university in Peking can do it, but we can't
afford to have machine-gun armed security guards sitting watch over each box
and every metre of coax, fiber, and twisted pair.
Plug'n'play software to do such things exists. Fortunately, it is kept under
very tight control. You won't find it on any FTP server.
-- Mark -- (that's Mark with a `k', not a `c')
Mark is lying. He cannot, from his personal workstation, send mail to
hosts within the convex.com domain (where, I am told, some experimental
RFC 931 servers are running) without having some non-Convex host appear
in the headers. Mark can't even *touch* TCP/IP in that domain---or in
thousands more around the Internet.
What Mark is trying to say is that it's not difficult to break TCP.
Indeed, that's why I had category (5): more people can control TCP
between A and B than just the A and B sysadmins! So what have you
contributed to the discussion, Mark?
> Plug'n'play software to do such things exists. Fortunately, it is kept under
> very tight control. You won't find it on any FTP server.
Ooh ah. Are we supposed to be impressed? Everyone else: If you want an
accurate summary of TCP/IP weaknesses, read Steve Bellovin's paper on
the topic. The attacks he outlines require more technical skill to
understand and implement than RFC 931, but once again you don't have to
trust Mark's summaries (or mine). Steve also has a paper (which,
unfortunately, hasn't been distributed widely) on the lack of DNS
security, which is somewhat relevant to mail headers. Don't listen to
Mark's self-serving ``I know better than you do'' rhetoric; read the
papers and learn about the attacks for yourself.
``These wounds I had on Crispin's day.''
-- Henry V, Act IV, Scene III
``The use of history as therapy means the corruption of history as history.''
-- Arthur Schlesinger
Chet Ramey, Case Western Reserve University Internet: ch...@po.CWRU.Edu
}``These wounds I had on Crispin's day.''
} -- Henry V, Act IV, Scene III
You left out the best part... ;-)
``He which hath no stomach to this fight,
Let him depart;''