Google Groups no longer supports new Usenet posts or subscriptions. Historical content remains viewable.
Dismiss

Hughes' Netlock Product

0 views
Skip to first unread message

Bob Weber

unread,
Jun 8, 1994, 8:45:00 PM6/8/94
to
Has anyone done an evaluation of Hughes' netlock product (based on
RSA technology)?

Even with strong authentication, digital signatures, session
encryption, etc., are there still major vulnerabilities in the
underlying Unix operating system?

thanks much
Bob Weber
--
Robert Weber Voice: 617-654-0621
Northeast Consulting Resources, Inc. Fax: 617-654-0654
One Liberty Square, 11th Floor Internet: we...@world.std.com
Boston, MA 02109-4843 we...@ncri.com

Jerry Leslie

unread,
Jun 8, 1994, 10:26:06 PM6/8/94
to
Bob Weber (we...@world.std.com) wrote:
: Has anyone done an evaluation of Hughes' netlock product (based on
: RSA technology)?

: Even with strong authentication, digital signatures, session
: encryption, etc., are there still major vulnerabilities in the
: underlying Unix operating system?

Which dialect/sect of "the underlying Unix operating system" are you
referring to ? Not to pick on IBM, but the recent security hole in
AIX's rlogin would probably have defeated the netlock product.

--Gerald (Jerry) R. Leslie
Staff Engineer
Dynamic Matrix Control Corporation (my opinions are my own)
P.O. Box 721648 9896 Bissonnet
Houston, Texas 77272 Houston, Texas, 77036
713/272-5065 713/272-5200 (fax)
gle...@isvsrv.enet.dec.com
jle...@dmccorp.com

Dave Fandel

unread,
Jun 9, 1994, 8:48:21 PM6/9/94
to
In article <Cr3u3...@world.std.com>, Bob Weber <we...@world.std.com> wrote:
>Has anyone done an evaluation of Hughes' netlock product (based on
>RSA technology)?
>
>Even with strong authentication, digital signatures, session
>encryption, etc., are there still major vulnerabilities in the
>underlying Unix operating system?
>

I went to an internal sales pitch/demonstration on Netlock. The main
thing that Netlock seems to protect against is sniffing of data
between two machines. In order for Netlock to secure data the two
end machines must both be using Netlock. It definitely does a good
job at encrypting the traffic.

Since it wasn't intended to protect the machines themselves it
will not stop someone from cracking the platform itself. (Unless
you include all your machines within a Netlock security domain
and don't allow outside access to them.

Dave Fandel
da...@pce2.hac.com
(The From address on this post is probably wrong)

PS - by asking awkward questions at the Demo they gave me a
demo version of the software. Now all I have to do is install it.

Tony Reeves

unread,
Jun 9, 1994, 11:44:00 AM6/9/94
to
Bob Weber (we...@world.std.com) wrote:
: Has anyone done an evaluation of Hughes' netlock product (based on
: RSA technology)?

Sure, we've taken a real close look at it..

looks like a real good product... very secure..

0 new messages