Back to the main page

Mailing List Logs for ShadowRN

From: Sommers <sommers@*****.UMICH.EDU>
Subject: Re: Weird Campaigns
Date: Thu, 21 May 1998 12:42:26 -0400
At 10:04 AM 5/21/98 -0500, you wrote:
>On Wed, 20 May 1998 20:14:52 EDT DisnyShamn <DisnyShamn@***.COM> writes:

<lots of stuff snipped>

>VR 2.0 makes constant reference to the Decker's Security Tally ...either
>that's poor wording or the Sec Tally is indivual :)
>
><SNIP other options :)>
>
>How about Security Tallies are individual but alerts are Global?
>

Okay, I work as PC support at my place, but I do some stuff with the
network admins. On our Novell server we have access rights that only the
superuser can change, limiting people on how they get in, etc. There is
also something like a security tally.

When a user tries to login to the system, they get prompted for their
username and pw. If they put in the wrong pw, it prompts them again. You
get 3 tries, then it locks up. What happens in the background is this.

You type in the pw 1st, and get it wrong. If you get it right the second
time, you get in and do your stuff. You do get a message saying that you
got it wrong, that you have to clear. The network program marks that you
got your password wrong once in the security file, which can be accessed by
the superuser.

You get it wrong twice, smae as the first.

Third time, you're in trouble. The login won't work until you sever your
connection, ie. reboot the system. Even then, you cannot use that account
to log in. The security program (a subroutine of the network program)
temporarily marks that account with NO access rights and sends a page to
the netadmin. He has to log onto a terminal somewhere as a superuser, go
into the security program, and reset the guy's account.

In now way does my screwup with my password affect my neighbor's ability or
rights to login.

Trying to compare it to Real Life (a mistake I know) it seems that a
Security Tally is local to the user, and keeps track of how much they are
screwing up before their rights are changed. If they get a 1/3 tally, they
lose the right NOT to be hassled by some IC that sniffs around more
carefully to find out who they are. If they get a full tally, they lose the
right to NOT be targeted by that nasty Black IC.

The GLobal Alerts are commands that change the access rights of Everyone,
so that they all lose the right to not be hassled by sniffers. If you're
really paranoid you might make it so that anybody who got any tally added
up to up the Alert Status, but on a major system that might have hundreds
to thousands of users, it would quickly shut down.

Sommers

Disclaimer

These messages were posted a long time ago on a mailing list far, far away. The copyright to their contents probably lies with the original authors of the individual messages, but since they were published in an electronic forum that anyone could subscribe to, and the logs were available to subscribers and most likely non-subscribers as well, it's felt that re-publishing them here is a kind of public service.

Thwap!