LISTSERV - HP3000-L Archives

HP3000-L Archives

March 1997, Week 2

HP3000-L@RAVEN.UTC.EDU

	LISTSERV Archives
	HP3000-L Home
	HP3000-L March 1997, Week 2

	Log In
	Register

	Subscribe or Unsubscribe

	Search Archives

Options:	Use Monospaced Font Show Text Part by Default Show All Mail Headers
Message:	[<< First] [< Prev] [Next >] [Last >>]
Topic:	[<< First] [< Prev] [Next >] [Last >>]
Author:	[<< First] [< Prev] [Next >] [Last >>]

Subject:	Security
From:	Andreas Schmidt <[log in to unmask]>
Reply To:	Andreas Schmidt <[log in to unmask]>
Date:	Fri, 14 Mar 1997 14:32:26 +0100
Content-Type:	multipart/mixed
Parts/Attachments:	text/plain (1799 bytes) , SIGNATUR.TXT (316 bytes)

we have changed the system catalog to display only question marks
instead of the MPE default
ENTER YOUR ACCOUNT (account) PASSWORD:
           USER
           GROUP

we are using VESOFTs complete tool box MPEX, SECURITY/3000 and VEAUDIT
(why not having MPEX for CI ;-)

we force ALL logons to SEC/3000 via system wide logon UDC (incl. SMs ...
as long as they do not use the bypass).

the MPEX BACKG LOGOFF task is configured in that way, that all SMs not
matching the personal session names for the SMs, are aborted.

Our WELCOME message looks like

    ****************************************************************
    This is a private computer  facility to be accessed and used for
    Company business purposes only. Access to it for any reason must
    be specifically authorized. Unauthorized access to this computer
    facility will expose you to criminal and/or civil proceedings.

    All information  contained  in  this computer system,  including
    messages,  is the property of the Company.  The Company reserves
    the right to access and disclose all information sent through or
    stored in this computer system, for any purpose.
    ****************************************************************

              ********************************************
              You are at: Bad Homburg <CPUname but skipped> Series
<skip>
              ********************************************

I agree that the system's name, location and type could be helpful for
any unauthorized action to be taken, but on the other hand, by seeing
this info you must have been able
* to type an valid logon string session,user.account and
* to type in two passwords by having only a limited number of attempts
(SEC/3000 and not MPE feature).
We feel comfortable and secure, and never get an audit complaint for
this logon procedure.




Best regards, Andreas Schmidt
DuPont Information Systems - Europe
C&NS - Computer Technology Europe
DuPont Deutschland GmbH
61343 Bad Homburg, DuPont-Strasse 1, Room 1-346
Phone: 06172-87-2117  Fax -2108   DUCOM x951-2117
eMail: [log in to unmask]
CDC-E HP3000 at http://dew2.nib.dupont.com/webdoc/hp3000/view.cgi

ATOM RSS1 RSS2

RAVEN.UTC.EDU