[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: comments

To: "George M. Jones" <gmjones@mitre.org>
Subject: Re: comments
From: ericb@digitaljunkyard.net
Date: 17 Jun 2003 01:53:46 +0000
Cc: "Smith, Donald" <Donald.Smith@qwest.com>, "'Dan Hollis '" <goemon@anime.net>, "'opsec@ops.ietf.org '" <opsec@ops.ietf.org>
In-reply-to: <3EEE0808.5040500@mitre.org>
References: <2D00AD0E4D36D411BD300008C786E4240D558E7E@Denntex021.qwest.net><3EEE0808.5040500@mitre.org>
User-agent: Gnus/5.0808 (Gnus v5.8.8) XEmacs/21.1 (Cuyahoga Valley)

 "gmj" == George M Jones <gmjones@mitre.org> writes:

gmj> So this is back to the knobs and settings question.   First, we want the
gmj> knobs to be there to enable secure configuration.    Second, we want
gmj> secure default configuraitons.

gmj> Passwords are clearly knobs.   The question is, how reasonable is it
gmj> to set them with secure defaults (e.g. random, per-unit passwords
gmj> maybe printed on the case, stored in the PROM, etc.) ?

Take a tip from the hackers.

Most rootkits that use passwords don't come with passwords.  One is
required, and no default is supplied, not even a suggestion.

Make it a defaultless, required configuration option.  They may choose
poorly, but they'll all choose poorly and differently.

ericb

Follow-Ups:
- Re: comments
  - From: "merike kaeo" <merike@groovy.com>

References:
- RE: comments
  - From: "Smith, Donald" <Donald.Smith@qwest.com>
- Re: comments
  - From: "George M. Jones" <gmjones@mitre.org>

Prev by Date: RE: comments
Next by Date: Re: comments
Previous by thread: Re: comments
Next by thread: Re: comments
Index(es):
- Date
- Thread