|
DataMuseum.dkPresents historical artifacts from the history of: DKUUG/EUUG Conference tapes |
This is an automatic "excavation" of a thematic subset of
See our Wiki for more about DKUUG/EUUG Conference tapes Excavated with: AutoArchaeologist - Free & Open Source Software. |
top - metrics - downloadIndex: T U
Length: 293589 (0x47ad5)
Types: TextFile
Notes: Uncompressed file
└─⟦4f9d7c866⟧ Bits:30007245 EUUGD6: Sikkerheds distributionen
└─⟦b2e2a839f⟧ »./papers/Security_Primer/primer.ps.Z«
└─⟦this⟧
%!
% This file is a NONconforming PostScript file.
% Copyright 1989 Stephan v. Bechtolsheim (unless otherwise stated)
% applies to various prologue files. Read documentation for details.
save
% dvitps: BEGIN including file "/usr/misc/TeX/lib/TeXPS/pro/texpre.pro"
/@bop0
{
PsPrintEnabled { (Pass0: Page ) print == flush } {pop} ifelse
} def
/@eop0 {
pop
} def
/@bop1
{
PsPrintEnabled { (Pass1: Page ) print == flush } {pop} ifelse
save
DviTranslateVector-X DviTranslateVector-Y translate
DviOrientationMatrix concat
Page-H-Offset Page-V-Offset translate
3 1 roll
translate
0 0 moveto
Draft-Flag { @Draft } if
/DriverDelta 0 def
} def
/@eop1 {
pop
showpage
restore
} def
/@end {
(Done!\n) print flush
} def
/@ReportVmStatus {
(\n@ReportVmStatus: ) print
print (: ) print
vmstatus
(max: ) print 20 string cvs print
(, used: ) print 20 string cvs print
(, level: ) print 20 string cvs print
(\n) print flush
} def
/@ReportVmStatusNew {
(VM: ) print
exch print
(, printer: ) print
/Vmfree vmstatus pop exch pop def Vmfree ( ) cvs print
(, driver: ) print dup ( ) cvs print
(, delta: ) print
Vmfree sub ( ) cvs print
(\n) print flush
} def
/@Draft {
gsave
Page-H-Offset neg Page-V-Offset neg translate
-45 rotate
-150 0 moveto
/Helvetica-Bold findfont
[120.0 0 0 -120.0 0 0 ] makefont setfont
(DRAFT) show
grestore
gsave
Page-H-Offset neg Page-V-Offset neg translate
300 -100 moveto
/Helvetica-Bold findfont
[60.0 0 0 -60.0 0 0 ] makefont setfont
Date-and-Time show
( :: ) show
Dvi-File-Name show
grestore
} def
% dvitps: END including file "/usr/misc/TeX/lib/TeXPS/pro/texpre.pro"
% dvitps: BEGIN including file "/usr/misc/TeX/lib/TeXPS/pro/pos.pro"
/a { rmoveto } def
/DriverDelta 0 def
/b { exch p dup /DriverDelta exch def 0 rmoveto } def
/c { p DriverDelta 4 sub dup /DriverDelta exch def 0 rmoveto } def
/d { p DriverDelta 3 sub dup /DriverDelta exch def 0 rmoveto } def
/e { p DriverDelta 2 sub dup /DriverDelta exch def 0 rmoveto } def
/f { p DriverDelta 1 sub dup /DriverDelta exch def 0 rmoveto } def
/g { p DriverDelta 0 rmoveto } def
/h { p DriverDelta 1 add dup /DriverDelta exch def 0 rmoveto } def
/i { p DriverDelta 2 add dup /DriverDelta exch def 0 rmoveto } def
/j { p DriverDelta 3 add dup /DriverDelta exch def 0 rmoveto } def
/k { p DriverDelta 4 add dup /DriverDelta exch def 0 rmoveto } def
/l { p -4 0 rmoveto } def
/m { p -3 0 rmoveto } def
/n { p -2 0 rmoveto } def
/o { p -1 0 rmoveto } def
/q { p 1 0 rmoveto } def
/r { p 2 0 rmoveto } def
/s { p 3 0 rmoveto } def
/t { p 4 0 rmoveto } def
/p { show } def
/w { 0 exch rmoveto } def
/x { 0 rmoveto } def
/y { 3 -1 roll p rmoveto } def
/u-string ( ) def
/u { u-string exch 0 exch put
u-string show
} def
/v { u-string exch 0 exch put
currentpoint
u-string show
moveto
} def
% dvitps: END including file "/usr/misc/TeX/lib/TeXPS/pro/pos.pro"
% dvitps: BEGIN including file "/usr/misc/TeX/lib/TeXPS/pro/rules.pro"
/z
{ /dy exch def
/dx exch def
currentpoint
currentpoint
transform round exch round exch itransform
newpath
moveto
dx 0 rlineto
0 dy rlineto
dx neg 0 rlineto
closepath
fill
moveto
}
def
/z
{ /dy exch def
/dx exch def
currentpoint
0.2 0.2 rmoveto
currentpoint
newpath
moveto
dx 0 rlineto
0 dy rlineto
dx neg 0 rlineto
closepath
fill
moveto
}
def
% dvitps: END including file "/usr/misc/TeX/lib/TeXPS/pro/rules.pro"
letter
/Dvi-File-Name (main.dvi) def
/Draft-Flag false def
/#copies 1 def
/NumCharsInPixelFonts 256 def
/HostName (hs.sei.cmu.edu) def
/PsPrintEnabled false def
/Page-H-Offset 0.000000 def
/Page-V-Offset 0.000000 def
/ExecPsConv {0.30 mul} def
/Date-and-Time (Tue Nov 20 09:54 1990) def
/DviTranslateVector-X 72.000 def
/DviTranslateVector-Y 720.000 def
/DviOrientationMatrix [ 0.240 0.000 0.000
-0.240 0.0 0.0 ] def
% dvitps: BEGIN including file "/usr/misc/TeX/lib/TeXPS/pro/pixel-fonts.pro"
/@newfont
{
/newname exch def
newname 7 dict def
newname load begin
/FontType 3 def
/FontMatrix [1 0 0 -1 0 0] def
/FontBBox [0 0 1 1] def
/BitMaps NumCharsInPixelFonts array def
/BuildChar {CharBuilder} def
/Encoding NumCharsInPixelFonts array def
0 1 NumCharsInPixelFonts 1 sub {Encoding exch /.undef put} for
end
newname newname load definefont pop
} def
/ch-image {ch-data 0 get} def
/ch-width {ch-data 1 get} def
/ch-height {ch-data 2 get} def
/ch-xoff {ch-data 3 get} def
/ch-yoff {ch-data 4 get} def
/ch-tfmw {ch-data 5 get} def
/CharBuilder
{
/ch-code exch def
/font-dict exch def
/ch-data font-dict /BitMaps get ch-code get def
ch-data null eq not
{
ch-tfmw 0
ch-xoff neg
ch-height ch-yoff sub neg
ch-width ch-xoff neg add
ch-yoff
setcachedevice
0 0 transform round exch round exch itransform translate
ch-width ch-height true
[1 0 0 1 ch-xoff ch-height ch-yoff sub] {ch-image} imagemask
}
if
} def
/@dc
{
/ch-code exch def
/ch-data exch def
currentfont /BitMaps get
ch-code ch-data put
currentfont /Encoding get
ch-code ( ) cvs % convert the character code to a string
cvn
ch-code exch put
} def
/@sf /setfont load def
% dvitps: END including file "/usr/misc/TeX/lib/TeXPS/pro/pixel-fonts.pro"
44 @bop0
/@F1 @newfont
@F1 @sf
[<
FFFFFCFFFFFCFFFFFC01FE0001FE0001FE0001FE0001FE0001FE0001FE0001FE0001FE0001
FE0001FE0001FE0001FE0001FE0001FE0001FE0001FE0001FE0001FE0001FE0001FE0001FE
0001FE0001FE0001FE0001FE0001FE0001FE0001FE0001FE0001FE0001FE0001FE0001FE00
01FE00FFFFFCFFFFFCFFFFFC>
22 41 -2 40 26] 73 @dc
[<
FFFE001FFFFEFFFE001FFFFEFFFE001FFFFE01C00000FF0001C00000FF0001E00001FF0000
E00001FE0000E00001FE0000700003FC0000700003FC0000780007FC00003FFFFFF800003F
FFFFF800001FFFFFF000001C000FF000001E001FF000000E001FE000000E003FE000000700
3FC0000007003FC0000007807FC0000003807F80000003C0FF80000001C0FF00000001C0FF
00000000E1FE00000000E1FE00000000F3FE0000000073FC0000000073FC000000003FF800
0000003FF8000000003FF8000000001FF0000000001FF0000000000FE0000000000FE00000
00000FE00000000007C00000000007C00000000003800000>
47 41 -2 40 52] 65 @dc
[<
001FE00000FFFC0003F01E0007E007000FC003801F8001C03F8001C07F8000007F0000007F
000000FF000000FF000000FF000000FF000000FF000000FF000000FF0000007F0000007F00
00007F800E003F801F001F803F800FC03F8007E03F8003F01F0000FFFE00001FF800>
26 27 -2 26 31] 99 @dc
[<
FFFC3FFEFFFC3FFEFFFC3FFE0FC00FE00FC00FC00FC01FC00FC03F800FC07F000FC07F000F
C0FE000FC1FC000FE3F8000FF3F8000FFFF0000FFFE0000FEFE0000FE7C0000FE3C0000FE0
E0000FE078000FE03C000FE01E000FE00F000FE007800FE01FFC0FE01FFC0FE01FFC0FE000
000FE000000FE000000FE000000FE000000FE000000FE000000FE000000FE000000FE00000
0FE000000FE00000FFE00000FFE00000FFE00000>
31 42 -2 41 36] 107 @dc
[<
FFFE3FFF80FFFE3FFF80FFFE3FFF800FE003F8000FE003F8000FE003F8000FE003F8000FE0
03F8000FE003F8000FE003F8000FE003F8000FE003F8000FE003F8000FE003F8000FE003F8
000FE003F8000FE003F8000FE003F8000FE003F8000FF003F8000FF003F8000FD803F8000F
D803F0000FCE03F000FFC787E000FFC1FFC000FFC07F0000>
33 27 -3 26 38] 110 @dc
[<
003FE00001FFFC0007F07F000FC01F801F800FC03F800FE03F800FE07F0007F07F0007F0FF
0007F8FF0007F8FF0007F8FF0007F8FF0007F8FF0007F8FF0007F8FF0007F87F0007F07F00
07F07F0007F03F0007E03F800FE01F800FC00FC01F8003F07E0001FFFC00003FE000>
29 27 -2 26 34] 111 @dc
[<
00078003C00000078003C000000FC007E000000FC007E000000FC007E000001FE00FF00000
1FE00FF000003FF01FF800003FF01FB800003FF01FB800007F783F3C00007F383F1C0000FF
383F1E0000FE1C7E0E0000FE1C7E0E0001FE1EFC0F0001FC0EFC070001FC0EFC070003F807
F8038003F807F8038007F807F803C007F003F001C007F003F001C00FE007E000E0FFFE7FFC
0FFEFFFE7FFC0FFEFFFE7FFC0FFE>
47 27 -1 26 50] 119 @dc
[<
FFFEFFFEFFFE0FE00FE00FE00FE00FE00FE00FE00FE00FE00FE00FE00FE00FE00FE00FE00F
E00FE00FE00FE00FE00FE00FE00FE00FE00FE00FE00FE00FE00FE00FE00FE00FE00FE00FE0
0FE00FE0FFE0FFE0FFE0>
15 42 -3 41 19] 108 @dc
[<
001FF00000FFFE0003F81F0007E003800FC001C01F8000E03F8000E07F0000007F0000007F
000000FF000000FF000000FF000000FFFFFFE0FFFFFFE0FF0007E0FF0007E07F0007E07F00
07C07F000FC03F800FC01F800F800F801F8007C01F0003F07E0001FFF800003FE000>
27 27 -2 26 32] 101 @dc
[<
003FC3FF8000FFF3FF8003F03BFF8007C00FF8000F8007F8001F8003F8003F8003F8007F00
03F8007F0003F8007F0003F800FF0003F800FF0003F800FF0003F800FF0003F800FF0003F8
00FF0003F800FF0003F8007F0003F8007F0003F8007F0003F8003F8003F8001F8003F8000F
C007F80007E00FF80003F03FF80000FFFBF800001FE3F800000003F800000003F800000003
F800000003F800000003F800000003F800000003F800000003F800000003F800000003F800
000003F800000003F80000003FF80000003FF80000003FF800>
33 42 -2 41 38] 100 @dc
[<
007FF00003FFFE000FC01F801F0007C03C0001E07C0001F0F80000F8F80000F8F80000F8F8
0000F87C0001F83E0007F01FFFFFF007FFFFE00FFFFFC01FFFFF801FFFFF003FFFF8003E00
00003C000000380000003800000018FF80001FFFE0000FC1F8001F80FC001F007C003F007E
007F007F007F007F007F007F007F007F007F007F007F007F003F007E101F007C381F80FC7C
0FC1FE7C03FFE7F800FF81F0>
30 40 -2 26 34] 103 @dc
[<
FFFE1FFFC3FFF8FFFE1FFFC3FFF8FFFE1FFFC3FFF80FE001FC003F800FE001FC003F800FE0
01FC003F800FE001FC003F800FE001FC003F800FE001FC003F800FE001FC003F800FE001FC
003F800FE001FC003F800FE001FC003F800FE001FC003F800FE001FC003F800FE001FC003F
800FE001FC003F800FE001FC003F800FE001FC003F800FF001FE003F800FF001FE003F800F
D801FF003F800FCC01F9803F000FC603F8C07F00FFC383F0707E00FFC1FFE03FFC00FFC07F
800FF000>
53 27 -3 26 57] 109 @dc
[<
001F8000FFC001F86003F87003F03807F03807F03807F03807F03807F03807F03807F00007
F00007F00007F00007F00007F00007F00007F00007F00007F00007F00007F00007F000FFFF
F0FFFFF01FFFF007F00003F00003F00001F00000F00000F00000F000007000007000007000
007000>
21 38 -1 37 27] 116 @dc
[<
C1FF00F7FFC0FF01E0FC0070F80038F00038F0003CE0003C60007C0000FC0003FC00FFF807
FFF81FFFF03FFFE07FFF807FFE00FFE000FC0000F80070F00070F000707000703800F01E03
F00FFFF003FE30>
22 27 -2 26 27] 115 @dc
/@F9 @newfont
@F9 @sf
[<
FFFFF0>
20 1 0 11 21] 123 @dc
[<
FFF3FFC00F003C000F003C000F003C000F003C000F003C000F003C000F003C000F003C000F
003C000F003C000F003C000F003C000F003C000FFFFC000F003C000F003C000F003C000F00
3C000F003C000F003C000F003C000F003C000F003C000F003C000F003C000F003C00FFF3FF
C0>
26 28 -2 27 31] 72 @dc
[<
03E00C181804300270026000E000E000E000E000FFFEE0066006700E300C18180C3003E0>
15 18 -1 17 18] 101 @dc
[<
FF801C001C001C001C001C001C001C001C001C001C001C001C001C001C001C001C001C001C
001C001C001C001C001C001C001C001C001C00FC00>
9 29 -1 28 12] 108 @dc
[<
FF80001C00001C00001C00001C00001C00001C00001C00001CF8001D06001E03001C01801C
01C01C01C01C00E01C00E01C00E01C00E01C00E01C00E01C00C01C01C01C01801E03001D86
00FC7C00>
19 26 -1 17 23] 112 @dc
[<
03F0000E1C00180600300300700380600180E001C0E001C0E001C0E001C0E001C0E001C060
01807003803003001806000E1C0003F000>
18 18 -1 17 21] 111 @dc
[<
7FE00E000E000E000E000E000E000E000E000E000E000E000E000E000E000E000E00FFE00E
000E000E000E000E000E000E0C061E071E018C00F8>
15 29 0 28 13] 102 @dc
[<
1F8700304E80603C40E01C40E01C40E01C40601C00701C00381C000F1C0001FC00001C0000
1C00301C00781C007838003070001FC000>
18 18 -2 17 21] 97 @dc
[<
03C00E200C101C101C101C101C101C101C001C001C001C001C001C001C001C001C00FFE03C
001C000C000C000400040004000400>
12 26 -1 25 16] 116 @dc
[<
60F0F060>
4 4 -4 3 12] 46 @dc
[<
07C00C301808300470046000E000E000E000E000E000E00060007030307818780C3007E0>
14 18 -2 17 18] 99 @dc
[<
FF801C001C001C001C001C001C001C001C001C001C001C001C001C001C001C001C00FC0000
0000000000000000000000000018003C003C001800>
9 29 -1 28 12] 105 @dc
[<
8FC0D060E010C018C0188018803800F80FF03FE07F80F800E010C010C010403030701F90>
13 18 -1 17 16] 115 @dc
[<
008020000180300001C0700001C0700003C0680003A0E80003A0E8000720C4000711C40007
11C4000E1182000E0B82000E0B82001C0B01001C0701001C0701803C0F0380FF3FCFE0>
27 18 -1 17 30] 119 @dc
[<
FFC01C001C001C001C001C001C001C001C001C001C001C001C001C301E781E781D30FCE0>
13 18 -1 17 16] 114 @dc
[<
FF9FF01C03801C03801C03801C03801C03801C03801C03801C03801C03801C03801C03801C
03801C03801E03801D03001C8700FC7C00>
20 18 -1 17 23] 110 @dc
[<
03E3F00E1B800C07801C07801C03801C03801C03801C03801C03801C03801C03801C03801C
03801C03801C03801C03801C0380FC1F80>
20 18 -1 17 23] 117 @dc
[<
01FFC0001C00001C00001C00001C00001C00001C00001C00FFFFC0C01C00401C00201C0030
1C00101C00081C000C1C00041C00021C00031C00011C00009C0000DC00005C00003C00003C
00001C00000C00000C00>
18 28 -1 27 21] 52 @dc
[<
07E01C10300C60046002C003C003C003C003C007600F601E307E18FC07F807F01FE03FB03E
08780C70066006600660062006200C10080C3003E0>
16 29 -2 27 21] 56 @dc
[<
00400000E00000E00000E00001D00001D00003D8000388000388000704000704000704000E
02000E02001C01001C01003C0380FF07E0>
19 18 -1 17 22] 118 @dc
/@F5 @newfont
@F5 @sf
[<
0FF000387C00783E00FC1F00FC1F80FC1F80781F80301F80001F80001F80001F80001F8000
1F80001F80001F80001F80001F80001F80001F80001F80001F80001F80001F80001F80001F
80001F8007FFF007FFF0>
20 28 -1 27 25] 74 @dc
[<
01FC000F03801E00C03C00607C0060780000F80000F80000F80000FFFFE0F801E0F801E078
01E07801C03C01C01C03800F070001FC00>
19 18 -1 17 22] 101 @dc
[<
FFF000FFF0001F00001F00001F00001F00001F00001F00001F00001F00001F00001F00001F
07001E8F801E8F801E8F80FE4700FE3E00>
17 18 -1 17 20] 114 @dc
[<
3E0000730000F98000F8C000F8600070600000700000300000300000780000780000FC0000
FC0000FE0001F60001F70003E30003E30007C18007C1800FC0C00F80C01F80E01F0060FFC1
FCFFC1FC>
22 26 -1 17 25] 121 @dc
[<
001FE00000FFFC0003F80E0007C003000F8001801F0000C03E0000C03E0000607E0000607C
000060FC000000FC000000FC000000FC000000FC000000FC000000FC000000FC0000007C00
00607E0000603E0000603E0000E01F0000E00F8001E007C003E003F80FE000FFF8E0001FE0
20>
27 28 -3 27 34] 67 @dc
[<
0FE1F83E13F8780BC0F807C0F807C0F807C07C07C03C07C01F07C007E7C0007FC00007C01C
07C03E07C03E07803E0F801C1E000FF800>
21 18 -1 17 23] 97 @dc
[<
FFE0FFE01F001F001F001F001F001F001F001F001F001F001F001F001F001F001F001F001F
001F001F001F001F001F001F001F001F00FF00FF00>
11 29 -1 28 13] 108 @dc
[<
FFE0FFE01F001F001F001F001F001F001F001F001F001F001F001F001F001F00FF00FF0000
00000000000000000000001E003F003F003F003F001E00>
11 30 -1 29 13] 105 @dc
[<
FFE7FFFFE7FF1F00F81F00F81F00F81F00F81F00F81F00F81F00F81F00F81F00F81F00F81F
00F81F80F81F80F81F40F0FF31E0FF0FC0>
24 18 -1 17 27] 110 @dc
[<
78FCFCFCFC78>
6 6 -3 5 13] 46 @dc
@F9 @sf
[<
FFF8000F80000F00000F00000F00000F00000F00000F00000F00000F02000F02000F02000F
02000F06000FFE000F06000F02000F02000F02000F02040F00040F00040F000C0F00080F00
080F00180F0078FFFFF8>
22 28 -2 27 27] 70 @dc
[<
FF0FF81E07C0040380060700020E00010E00009C0000F80000780000700000F00001D80001
C8000384000702000F03000F03807F8FF0>
21 18 0 17 22] 120 @dc
[<
FF8FF8FF801C01C01C001C01C01C001C01C01C001C01C01C001C01C01C001C01C01C001C01
C01C001C01C01C001C01C01C001C01C01C001C01C01C001C01C01C001C01C01C001E01E01C
001D019018001C83883800FC7E07E000>
33 18 -1 17 35] 109 @dc
[<
FF9FF01C03801C03801C03801C03801C03801C03801C03801C03801C03801C03801C03801C
03801C03801E03801D03001C87001C7C001C00001C00001C00001C00001C00001C00001C00
001C00001C00001C0000FC0000>
20 29 -1 28 23] 104 @dc
[<
07F8001C0E00300300600180C000C0C000C0C000C06001C03003801FFF801FFF001FF80018
000030000010000013C0000C30001C3800181800381C00381C00381C00381C001818001C38
800C38C003C4C0000380>
18 28 -1 18 21] 103 @dc
@F5 @sf
[<
01FC000F07801E03C03C01E07800F07800F0F800F8F800F8F800F8F800F8F800F8F800F878
00F07800F03C01E01C01C00F078001FC00>
21 18 -1 17 24] 111 @dc
[<
CFC0F830E018E01CC01CC01C007C07FC1FF87FF07FE0FF80F000E018E018601830781FD8>
14 18 -2 17 19] 115 @dc
@F9 @sf
[<
07C7E00C3700180F00300700700700600700E00700E00700E00700E00700E00700E0070060
0700700700300700180F000C170003E7000007000007000007000007000007000007000007
00000700000700000700003F00>
19 29 -2 28 23] 100 @dc
@F5 @sf
[<
FFE7FF3FF8FFE7FF3FF81F00F807C01F00F807C01F00F807C01F00F807C01F00F807C01F00
F807C01F00F807C01F00F807C01F00F807C01F00F807C01F00F807C01F80FC07C01F80FC07
C01F40F20780FF31E18F00FF0FC07E00>
37 18 -1 17 40] 109 @dc
[<
FFFFFF80FFFFFF800FC00F800FC003C00FC001C00FC001C00FC000C00FC000C00FC000E00F
C180600FC180600FC180000FC180000FC380000FFF80000FFF80000FC380000FC180000FC1
81800FC181800FC181800FC003800FC003800FC003000FC007000FC01F00FFFFFF00FFFFFF
00>
27 28 -2 27 31] 69 @dc
@F9 @sf
[<
FFF87038700838083C0C1C040E040F040700038003C041C040E040F04070603870387FFC>
14 18 -1 17 18] 122 @dc
@F5 @sf
[<
FFC07FFEFFC07FFE0C0007E00E000FE006000FC006000FC003001F8003001F8003FFFF8001
FFFF0001803F0000C07E0000C07E0000E0FE000060FC000061FC000031F8000031F800001B
F000001BF000001FF000000FE000000FE0000007C0000007C0000007C00000038000000380
00>
31 28 -2 27 36] 65 @dc
[<
FFFF0000FFFF00000FC000000FC000000FC000000FC000000FC000000FC000000FC180000F
C180000FC180000FC180000FC380000FFF80000FFF80000FC380000FC180000FC180000FC1
81800FC181800FC001800FC003800FC003800FC003000FC007000FC01F00FFFFFF00FFFFFF
00>
25 28 -2 27 30] 70 @dc
[<
03F9FE0F0FFE1C03F03C01F07801F07801F0F801F0F801F0F801F0F801F0F801F0F801F078
01F07801F03C01F01C03F00F07F001F9F00001F00001F00001F00001F00001F00001F00001
F00001F00001F0000FF0000FF0>
23 29 -2 28 27] 100 @dc
[<
FFFC0000FFFC00000FC000000FC000000FC000000FC000000FC000000FC000000FC000000F
C000000FC000000FC000000FC000000FFFFC000FC03F000FC00F800FC007C00FC007C00FC0
07E00FC007E00FC007E00FC007E00FC007E00FC007C00FC00F800FC03F80FFFFFE00FFFFF8
00>
27 28 -2 27 33] 80 @dc
[<
01F8FF0786FF0F01F81F01F81F00F81F00F81F00F81F00F81F00F81F00F81F00F81F00F81F
00F81F00F81F00F81F00F8FF07F8FF07F8>
24 18 -1 17 27] 117 @dc
[<
FFFC3FFFFFFC3FFF0FC003F00FC003F00FC003F00FC003F00FC003F00FC003F00FC003F00F
C003F00FC003F00FC003F00FC003F00FC003F00FFFFFF00FFFFFF00FC003F00FC003F00FC0
03F00FC003F00FC003F00FC003F00FC003F00FC003F00FC003F00FC003F0FFFC3FFFFFFC3F
FF>
32 28 -2 27 37] 72 @dc
[<
1C3F001EC1E01F80701F00781F003C1F003C1F003E1F003E1F003E1F003E1F003E1F003E1F
003C1F003C1F00781F80701FE1E01F3F801F00001F00001F00001F00001F00001F00001F00
001F00001F0000FF0000FF0000>
23 29 -1 28 27] 98 @dc
[<
FFC7FCFFC7FC1F03E01F07C01F0F801F0F001F1F001F3E001FBC001FFC001FF8001F70001F
18001F0C001F07001F03801F0FF81F0FF81F00001F00001F00001F00001F00001F00001F00
001F00001F0000FF0000FF0000>
22 29 -1 28 25] 107 @dc
@F9 @sf
[<
10F8001906001E03001C01801C01C01C00C01C00E01C00E01C00E01C00E01C00E01C00E01C
00C01C01C01C01801E03001D86001C7C001C00001C00001C00001C00001C00001C00001C00
001C00001C00001C0000FC0000>
19 29 -1 28 23] 98 @dc
@F5 @sf
[<
FFFFF800FFFFFF000FC01FC00FC007E00FC001F00FC000F80FC000F80FC0007C0FC0007C0F
C0007C0FC0007E0FC0007E0FC0007E0FC0007E0FC0007E0FC0007E0FC0007E0FC0007E0FC0
007C0FC0007C0FC000FC0FC000F80FC001F80FC001F00FC007E00FC01FC0FFFFFF00FFFFF8
00>
31 28 -2 27 37] 68 @dc
[<
00300000780000780000FC0000FC0001FE0001F60001F60003E30003E30007C18007C1800F
C0C00F80C01F80E01F0060FFC1FCFFC1FC>
22 18 -1 17 25] 118 @dc
[<
FFC0701FFFFFC0701FFF0C00F801F00C00F801F00C01FC01F00C01FC01F00C01FC01F00C03
E601F00C03E601F00C07C301F00C07C301F00C0F8181F00C0F8181F00C1F00C1F00C1F00C1
F00C1F00C1F00C3E0061F00C3E0061F00C7C0031F00C7C0031F00CF80019F00CF80019F00D
F0000DF00DF0000DF00DF0000DF00FE00007F0FFE00007FFFFC00003FF>
40 28 -2 27 45] 77 @dc
@F9 @sf
[<
804020201010101070F0F060>
4 12 -4 3 12] 44 @dc
@F5 @sf
[<
FFFC3FFFFFFC3FFF0FC007F00FC007E00FC00FC00FC01FC00FC01F800FC03F000FC07E000F
C0FE000FC0FC000FE1F8000FF3F8000FFBF0000FCFE0000FC7E0000FC3C0000FC1C0000FC0
E0000FC070000FC038000FC00C000FC006000FC003800FC001C00FC000E0FFFC07FFFFFC07
FF>
32 28 -2 27 37] 75 @dc
[<
003FE00001F07C0003C01E000F800F801F0007C03F0007E03E0003E07E0003F07E0003F07C
0001F0FC0001F8FC0001F8FC0001F8FC0001F8FC0001F8FC0001F8FC0001F8FC0001F87C00
01F07C0001F07E0003F03E0003E01E0003C01F0007C00F800F8003C01E0001F07C00003FE0
00>
29 28 -3 27 36] 79 @dc
@F9 @sf
[<
000600000006000000060000000F0000000F0000001F8000001E8000001E8000003C400000
3C4000003C4000007820000078200000F8300000F0100000F0100001F0080001E0080001E0
080003C0040003C0040003C0040007800200078002000F8003000F0001000F0001801F0003
C0FFE00FF0>
28 29 -1 27 31] 86 @dc
[<
FF8307FF801C030078000803007800080780780008078078000807807800080F407800080F
407800081E207800081E207800081E207800083C107800083C107800083C10780008780878
000878087800087808780008F004780008F004780008F004780009E002780009E00278000B
C00178000BC00178000BC00178000F8000F8000F8000F800FF8000FF80>
33 28 -2 27 38] 77 @dc
[<
83F800CC0C00D00200E00300C00180C001808001C08001C08001C00001C00003C00007C000
0F8000FF8007FF001FFE003FF8007FC0007C0000F80000F00000E00080E00080E00080E001
806001807003803005801C198007E080>
18 30 -2 28 23] 83 @dc
@F5 @sf
[<
00E00E0000E00E0000F01E0001F01F0001F83F0001F83F0003F83D8003EC7D8007EC79C007
CEF8C007C6F0C00F86F0600F83F0601F83E0701F03E0301F03E030FF8FF8FEFF8FF8FE>
31 18 -1 17 34] 119 @dc
44 @eop0
0 0 44 @bop1 262 307 a @F1 @sf(I)68 b(Ac)n(kno)n(wledgemen)n(ts)-665 91 y
@F9 @sf({)13 b(Help)h(of)f(a)h(lot)f(of)h(p)q(eople.)k({)c(copies)g(w)o
(ere)h(sen)o(t)g(out)e(to)h(48)f(p)q(eople)i(for)e(p)q(eer)i(review)-1390
91 y @F5 @sf(Jerry)f(Carlin.)22 b @F9 @sf(F)m(or)13 b(examples)h(from)f
(his)h(training)f(course.)-988 83 y @F5 @sf(Jo)q(e)i(Carlson.)21 b @F9 @sf
(F)m(or)13 b(help)h(with)g(sp)q(elling)f(and)h(grammar.)-949 83 y @F5 @sf
(James)h(Ellis.)22 b @F9 @sf(F)m(or)13 b(help)h(with)g(organization.)-764
83 y @F5 @sf(Alan)i(F)l(edeli.)-251 83 y(P)o(aul)f(Holbro)q(ok.)21 b @F9 @sf
(F)m(or)13 b(help)h(getting)g(this)g(do)q(cumen)o(t)g(distributed.)-1126
84 y @F5 @sf(Da)o(vid)h(Muir.)21 b @F9 @sf(F)m(or)12 b(help)g(with)g(sp)q
(elling,)g(grammar)f(and)i(commen)o(ts)f(ab)q(out)h(computer)-1328 49 y
(games.)-226 83 y @F5 @sf(Kevin)j(Ob)q(erman.)j @F9 @sf(F)m(or)14 b(help)g
(with)f(VMS)i(issues,)f(sp)q(elling)f(and)h(grammar.)-1270 83 y @F5 @sf
(Mik)o(e)i(Oda)o(w)o(a.)k @F9 @sf(F)m(or)14 b(help)g(with)f(the)i(micro)q
(computers)g(section.)-370 1670 y(44)-999 b
44 @eop1
43 @bop0
@F1 @sf
[<
FFFFF01FFFFEFFFFF01FFFFEFFFFF01FFFFE03FC00007F8003FC00007F8003FC00007F8003
FC00007F8003FC00007F8003FC00007F8003FC00007F8003FC00007F8003FC00007F8003FC
00007F8003FC00007F8003FC00007F8003FC00007F8003FC00007F8003FC00007F8003FC00
007F8003FC00007F8003FFFFFFFF8003FFFFFFFF8003FFFFFFFF8003FC00007F8003FC0000
7F8003FC00007F8003FC00007F8003FC00007F8003FC00007F8003FC00007F8003FC00007F
8003FC00007F8003FC00007F8003FC00007F8003FC00007F8003FC00007F8003FC00007F80
03FC00007F80FFFFF01FFFFEFFFFF01FFFFEFFFFF01FFFFE>
47 41 -3 40 54] 72 @dc
[<
0000FFE00000000FFFFE0000003FC07F800000FF001FE00001FC0007F00003F80003F80007
F00001FC000FF00001FE001FE00000FF001FE00000FF003FC000007F803FC000007F807FC0
00007FC07FC000007FC07F8000003FC0FF8000003FE0FF8000003FE0FF8000003FE0FF8000
003FE0FF8000003FE0FF8000003FE0FF8000003FE0FF8000003FE0FF8000003FE0FF800000
3FE07F8000003FC07F8000003FC07F8000003FC07FC000007FC03FC000007F803FC000007F
801FE00000FF001FE00000FF000FF00001FE0007F00001FC0003F80003F80001FC0007F000
007F001FC000003FC07F80000007FFFC00000000FFE00000>
43 41 -4 40 52] 79 @dc
[<
FFFF00FFFF00FFFF000FE0000FE0000FE0000FE0000FE0000FE0000FE0000FE0000FE0000F
E0000FE0000FE0000FE0000FE0000FE0000FE0000FF01C0FF03E0FF07F0FD87F0FD87FFFCE
3EFFC7FCFFC1F0>
24 27 -2 26 28] 114 @dc
[<
01FC03FC0FFF0FFC3F839FFC7F00DF807E007F80FE003F80FE003F80FE003F80FE003F807F
003F803F003F803F803F800FE03F8007FC3F8000FFFF80000FFF8000003F8000003F800000
3F8007003F800F803F801FC03F001FC07E001FC07E000F81F80007FFF00001FF8000>
30 27 -2 26 33] 97 @dc
[<
FFFFFFFE0000FFFFFFFFC000FFFFFFFFF00003F8001FF80003F80007FC0003F80003FE0003
F80001FF0003F80000FF0003F80000FF8003F80000FF8003F80000FF8003F80000FF8003F8
0000FF8003F80000FF8003F80000FF0003F80000FF0003F80001FE0003F80001FE0003F800
03FC0003F80007F00003FFFFFFE00003FFFFFE000003F800FFC00003F8001FE00003F8000F
F00003F80007F80003F80003FC0003F80003FC0003F80003FE0003F80001FE0003F80001FE
0003F80001FE0003F80003FE0003F80003FC0003F80003FC0003F80007FC0003F8000FF800
03F8001FF000FFFFFFFFC000FFFFFFFF8000FFFFFFF80000>
41 41 -3 40 49] 66 @dc
@F9 @sf
[<
007FF800000780000007800000078000000780000007800000078000000780000007800000
0780000007800000078000000FC000000F4000001F2000001E2000003C1000007C18000078
080000F8040000F0040001F0020003E0020003C0010007C00180078000800F8001E0FFF007
FC>
30 28 0 27 31] 89 @dc
[<
3C0000660000F30000F10000F0800000800000800000400000400000E00000E00000E00001
D00001D00003D8000388000388000704000704000704000E02000E02001C01001C01003C03
80FF07E0>
19 26 -1 17 22] 121 @dc
[<
30307878F8F8B0B080808080808040404040202010100808>
13 12 -6 28 21] 92 @dc
[<
003F800000E0E0000380380007001C000E000E001C0007003C00078038000380780003C078
0003C0700001C0F00001E0F00001E0F00001E0F00001E0F00001E0F00001E0F00001E0F000
01E0700001C0780003C0780003C0380003803C0007801C0007000E000E0007001C00038038
0000E0E000003F8000>
27 30 -2 28 32] 79 @dc
[<
FFFFE00F00780F003C0F001E0F001E0F000F0F000F0F000F0F000F0F000F0F000E0F001E0F
003C0F00780FFFE00F01F00F00780F003C0F001C0F001E0F001E0F001E0F001E0F001C0F00
3C0F00380F00F0FFFFC0>
24 28 -2 27 29] 66 @dc
[<
FF9FE01C0F801C0F001C0E001C1C001C3C001C38001C78001E70001DE0001CE0001C40001C
20001C10001C08001C0C001C0F001C3FC01C00001C00001C00001C00001C00001C00001C00
001C00001C00001C0000FC0000>
19 29 -1 28 22] 107 @dc
[<
808040402020101010100808080808086868F8F8F0F06060>
13 12 -1 28 21] 34 @dc
[<
FFE0FFE0>
11 2 0 9 14] 45 @dc
[<
FF80FFF01E001F000C001F0004001E0004001E0006003E0002003C0002003C0003007C0001
FFF800010078000180F8000080F0000080F0000041E0000041E0000041E0000023C0000023
C0000023C000001780000017800000178000000F0000000F0000000F000000060000000600
0000060000>
28 29 -1 28 31] 65 @dc
[<
001800180000180018000018001800003C003C00003C003C00003C003C00003E007C00007A
007A00007A007A00007900FA0000F100F10000F100F10000F100F10001E081E08001E081E0
8001E081E08003E043C04003C043C04003C043C04003C02780400780278020078027802007
801F00200F001F00100F001F00100F001F00101E001E00181F001F003CFFE0FFE0FF>
40 29 -1 27 43] 87 @dc
[<
7F87F80E01C00E01C00E01C00E01C00E01C00E01C00E01C00E01C00E01C00E01C00E01C00E
01C00E01C00E01C00E01C00E01C0FFFFC00E00000E00000E00000E00000E00000E01800E03
C00703C003018001C180007E00>
21 29 0 28 23] 12 @dc
[<
004000800100020006000C000C0018001800300030007000600060006000E000E000E000E0
00E000E000E000E000E000E000E000E000600060006000700030003000180018000C000C00
06000200010000800040>
10 42 -3 30 16] 40 @dc
[<
800040002000100018000C000C000600060003000300038001800180018001C001C001C001
C001C001C001C001C001C001C001C001C0018001800180038003000300060006000C000C00
18001000200040008000>
10 42 -2 30 16] 41 @dc
[<
07E01830201C401CF00EF80FF80FF80F700F000F000F000E001C001C003007E00060003000
18001C001C381E781E780E781E201C201C183007E0>
16 29 -2 27 21] 51 @dc
43 @eop0
0 0 43 @bop1 262 307 a @F1 @sf(H)68 b(Orange)23 b(Bo)r(ok)-517 91 y @F9 @sf
(Y)m(ou)14 b(ha)o(v)o(e)i(doubtlessly)f(b)o(y)h(no)o(w)f(heard)h(of)e(the)i
(\\Orange)g(Bo)q(ok")f(and)h(p)q(erhaps)g(of)f(the)-1431 50 y(whole)e
(rain)o(b)q(o)o(w)g(series.)-321 50 y(Muc)o(h)20 b(of)f(the)i(\\Orange)f
(Bo)q(ok")f(discusses)q 21 x(discretionary)h(and)g(mandatory)f(pro-)-1432
50 y(tection)f(mec)o(hanism)f(and)h(securit)o(y)g(lab)q(eling.)29 b
(Another)18 b(section)h(deals)f(with)f(\\co)o(v)o(ert)-1431 49 y(c)o
(hannels")f(for)h(data)f(to)g(leak)h(out.)26 b(While)16 b(most)g(of)g
(these)i(issues)g(are)f(not)f(imp)q(ortan)o(t)-1432 50 y(in)g(a)i(univ)o
(ersit)o(y)m(,)f(the)h(ideas)f(of)g(protecting)h(passw)o(ord)g(\014les)g
(\(ev)o(en)g(when)g(encrypted\))q(,)-1431 50 y(individual)o 14 x(accoun)o
(tabilit)o(y)c(of)g(users)j(and)e(passw)o(ord)h(aging)e(are)i(w)o(orth)f
(implemen)o(ting)-1433 50 y(in)e(an)h(unclassi\014ed)g(en)o(vironmen)o(t.)
133 2043 y(43)-999 b
43 @eop1
42 @bop0
@F1 @sf
[<
00007FF003000003FFFE0F00001FFFFF1F00003FF007BF0000FF8001FF0001FE0000FF0003
F80000FF0007F00000FF000FF00000FF001FE00000FF001FE00000FF003FC00000FF003FC0
0000FF007FC00000FF007F8001FFFFF87F8001FFFFF8FF8001FFFFF8FF8000000000FF8000
000000FF8000000000FF8000000000FF8000000000FF8000000000FF8000000000FF800000
00007F80000000007F80000007007FC0000007003FC0000007003FC000000F001FE000000F
001FE000000F000FF000001F0007F000003F0003F800003F0001FE0000FF0000FF8001FF00
003FF00FFF00001FFFFF0F000003FFFC070000007FE00300>
45 41 -4 40 54] 71 @dc
[<
003FC3FF8001FFF3FF8003F03BFF8007E00FF80007E007F8000FE007F8000FE003F8000FE0
03F8000FE003F8000FE003F8000FE003F8000FE003F8000FE003F8000FE003F8000FE003F8
000FE003F8000FE003F8000FE003F8000FE003F8000FE003F8000FE003F8000FE003F8000F
E003F8000FE003F800FFE03FF800FFE03FF800FFE03FF800>
33 27 -3 26 38] 117 @dc
@F9 @sf
[<
03FFFC00001F8000000F0000000F0000000F0000000F0000000F0000000F0000000F000000
0F0000000F0000000F0000000F0000000F0000000F0000000F0000000F0000000F0000000F
0000800F0020800F0020800F0020C00F0020400F0040400F0040600F00C0700F01C07FFFFF
C0>
27 28 -1 27 30] 84 @dc
/@F2 @newfont
@F2 @sf
[<
0003FF00C0001FFFC3C0007F80E7C001FC003FC003F0001FC007E0001FC00FC0001FC01F80
001FC03F00001FC03F00001FC07F00001FC07F00001FC07E000FFFFCFE000FFFFCFE000000
00FE00000000FE00000000FE00000000FE00000000FE00000000FE000000007E000000C07E
000000C07F000000C03F000001C03F000001C01F800003C00FC00003C007C00007C003F000
0FC001F8003FC0007F00F1C0001FFFC0C00003FE0040>
38 34 -3 33 44] 71 @dc
[<
387CFEFEFE7C38>
7 7 -4 6 16] 46 @dc
[<
7FFFE07FFFE001F80001F80001F80001F80001F80001F80001F80001F80001F80001F80001
F80001F80001F80001F80001F80001F80001F80001F80001F80001F80001F80001F80001F8
0001F80001F800FFF800FFF80001F800007800001800>
19 32 -4 31 28] 49 @dc
[<
FFE00FFFF8FFE00FFFF80600007F000600007F00030000FE00030000FE00038001FE000180
01FC00018001FC0000FFFFF80000FFFFF80000E007F800006007F00000600FF00000300FE0
0000300FE00000381FE00000181FC00000183FC000000C3F8000000C3F8000000E7F800000
067F00000006FF00000003FE00000003FE00000003FE00000001FC00000001FC00000000F8
00000000F800000000F8000000007000000000700000>
37 34 -2 33 42] 65 @dc
[<
00F80003FE0007C3000F83000F81800F81800F81800F81800F81800F80000F80000F80000F
80000F80000F80000F80000F80000F80000F80000F8000FFFF00FFFF003F80000F80000780
00078000038000038000018000018000018000018000>
17 32 -1 31 22] 116 @dc
[<
07E03F1FF87F7E0CF87E02F0FC01F0FC01F0FC01F0FC01F07E01F03F01F01FC1F003FDF000
3FF00001F00001F01E01F03F01F03F01E03F03E03F07C01FFF8007FC00>
24 22 -2 21 27] 97 @dc
[<
00FE0007FF800FC0E01F00603E00307E00007E00007C0000FC0000FC0000FC0000FC0000FC
0000FC00007C00007C01E07E03F03E03F01F03F00F83F007FFE000FF80>
20 22 -2 21 25] 99 @dc
[<
FFE0FFC0FFE0FFC01F003C001F007C001F00F8001F01F0001F01E0001F03E0001F07C0001F
0F80001FCF00001FFF00001F7E00001F1C00001F0E00001F0700001F0380001F01C0001F00
60001F0038001F00FF801F00FF801F0000001F0000001F0000001F0000001F0000001F0000
001F0000001F0000001F0000001F0000001F000000FF000000FF000000>
26 35 -2 34 30] 107 @dc
[<
FFFFFF8000FFFFFFF00007F003FC0007F0007E0007F0003F0007F0001F8007F0000FC007F0
0007E007F00007E007F00003F007F00003F007F00003F007F00003F807F00003F807F00003
F807F00003F807F00003F807F00003F807F00003F807F00003F807F00003F807F00003F007
F00003F007F00003F007F00007F007F00007E007F00007E007F0000FC007F0001F8007F000
3F0007F0007E0007F003FC00FFFFFFF000FFFFFF8000>
37 34 -2 33 43] 68 @dc
[<
FFE0FFE01F001F001F001F001F001F001F001F001F001F001F001F001F001F001F001F001F
001F00FF00FF0000000000000000000000000000001C003E007F007F007F003E001C00>
11 36 -2 35 16] 105 @dc
[<
7FF07FF0FFE07FF07FF0FFE00F800F801F000F800F801F000F800F801F000F800F801F000F
800F801F000F800F801F000F800F801F000F800F801F000F800F801F000F800F801F000F80
0F801F000F800F801F000F800F801F000F800F801F000F800F801F000F800F801F000F800F
801F000F800F801F00FFFFFFFFFF00FFFFFFFFFF000F800F8000000F800F8000000F800F80
00000F800F8000000F800F800C000F800F801E000F801F803F000F801F803F0007C01FC03F
0003E00FE01F0001F80FF80E00007FFE7FFC000007F80FF000>
43 35 -1 34 47] 14 @dc
[<
01FC3FC007FF3FC00F81BE001F00FE001F007E001F003E001F003E001F003E001F003E001F
003E001F003E001F003E001F003E001F003E001F003E001F003E001F003E001F003E001F00
3E001F003E00FF01FE00FF01FE00>
26 22 -2 21 31] 117 @dc
[<
FFE0FFE01F001F001F001F001F001F001F001F001F001F001F001F001F001F001F001F001F
001F001F001F001F001F001F001F001F001F001F001F001F001F001F00FF00FF00>
11 35 -2 34 16] 108 @dc
[<
1F0000007F80000069C00000FC600000FC300000FC3800007818000000180000000C000000
0C0000000E0000000E0000001F0000001F0000003F8000003F8000007FC000007CC000007C
C00000F8600000F8600001F0300001F0300003E0180003E0180007E01C0007C00C000FC00E
000F8006000F800600FFE01FE0FFE01FE0>
27 32 -1 21 30] 121 @dc
[<
FFFF800FF0FFFF803FF807F000FF0C07F000FE0607F001FC0607F001FC0007F001FC0007F0
01FC0007F001FC0007F001FC0007F001FC0007F001FC0007F001FC0007F003F80007F007F0
0007F00FE00007FFFF800007FFFFC00007F007F00007F001F80007F000FC0007F0007E0007
F0007F0007F0007F0007F0007F0007F0007F0007F0007F0007F0007F0007F0007E0007F000
FC0007F001F80007F007F000FFFFFFC000FFFFFE0000>
39 34 -2 33 42] 82 @dc
[<
00FE0007FFC00F83E01F01F03E00F87C007C7C007CFC007EFC007EFC007EFC007EFC007EFC
007EFC007E7C007C7C007C7C007C3E00F81E00F00F83E007FFC000FE00>
23 22 -2 21 28] 111 @dc
[<
C7F000EFFC00FC0E00F00700E00380E00380C00380C00780000F8001FF000FFF003FFE007F
F8007FE000FC0000F00300E00300E00300600700781F003FFF000FF300>
17 22 -2 21 22] 115 @dc
@F9 @sf
[<
804020101008080868F8F060>
5 12 -4 28 12] 39 @dc
[<
FFFFF00F01F00F00700F00300F00100F00180F00180F00080F00080F00080F00000F00000F
00000F00000F00000F00000F00000F00000F00000F00000F00000F00000F00000F00000F00
000F00000F8000FFF800>
21 28 -2 27 26] 76 @dc
[<
FF8004001C000C0008000C0008001C0008003C0008003C0008007C0008007C000800F40008
01E4000801E4000803C4000807C40008078400080F0400080F0400081E0400083C0400083C
04000878040008F8040008F0040009E0040009E004000BC004000F8004000F800E00FF007F
C0>
26 28 -2 27 31] 78 @dc
[<
FFFFFC0F003C0F000C0F00060F00060F00020F00020F00020F00010F02010F02000F02000F
02000F06000FFE000F06000F02000F02000F02000F02020F00020F00020F00060F00040F00
040F000C0F003CFFFFFC>
24 28 -2 27 28] 69 @dc
@F2 @sf
[<
FFFFF0FFFFF07FFFF03FFFF01FFFF00FFFF00E003807001803801801C01800E01800700000
3800003E00001F00000F800007C00007E00003F00003F00003F83803F87C01F8FE01F8FE03
F8FE03F8FE03F07C07F07007E03C1FC00FFF0003FC00>
21 32 -3 31 28] 50 @dc
[<
FFFFE0FFFFE003F80003F80003F80003F80003F80003F80003F80003F80003F80003F80003
F80003F80003F80003F80003F80003F80003F80003F80003F80003F80003F80003F80003F8
0003F80003F80003F80003F80003F80003F80003F800FFFFE0FFFFE0>
19 34 -1 33 21] 73 @dc
[<
FFE1FFC0FFE1FFC01F003E001F003E001F003E001F003E001F003E001F003E001F003E001F
003E001F003E001F003E001F003E001F003E001F003E001F003E001F803E001F803E001F40
3C001F307C00FF1FF800FF07E000>
26 22 -2 21 31] 110 @dc
[<
01FC3FC007FF3FC00F83BE001E00FE003E007E007C003E007C003E00FC003E00FC003E00FC
003E00FC003E00FC003E00FC003E00FC003E00FC003E007C003E007E003E003E003E001F00
7E000F81FE0007FFBE0001FC3E0000003E0000003E0000003E0000003E0000003E0000003E
0000003E0000003E0000003E0000003E0000003E000001FE000001FE00>
26 35 -2 34 31] 100 @dc
[<
000E0000000E0000001F0000001F0000003F8000003F8000007FC000007CC000007CC00000
F8600000F8600001F0300001F0300003E0180003E0180007E01C0007C00C000FC00E000F80
06000F800600FFE01FE0FFE01FE0>
27 22 -1 21 30] 118 @dc
[<
80FF80C7FFE0FF00F8FC003CF0003CE0001EE0001EC0001FC0001FC0001F00003F00003F00
007F0003FF003FFE03FFFE0FFFFC1FFFF83FFFF07FFFC07FFF00FFE000FF0000FC0000FC00
0CF8000CF8000C78001C78001C7C003C3C007C1F03FC07FF8C01FC04>
24 34 -3 33 31] 83 @dc
[<
FFE00000FFE000001F0000001F0000001F0000001F0000001F0000001F0000001F0000001F
0000001F0FC0001F3FF8001FE0FC001FC03E001F803F001F001F801F001F801F000FC01F00
0FC01F000FC01F000FC01F000FC01F000FC01F000FC01F000FC01F001F801F001F801F001F
001F803E001FF07C00FF3FF800FF0FE000>
26 32 -2 21 31] 112 @dc
[<
FFF000FFF0001F00001F00001F00001F00001F00001F00001F00001F00001F00001F00001F
00001F00001F00001F83C01E87E01E87E01EC7E01E67E0FE3FC0FE1F00>
19 22 -2 21 23] 114 @dc
@F9 @sf
[<
FFF00F000F000F000F000F000F000F000F000F000F000F000F000F000F000F000F000F000F
000F000F000F000F000F000F000F000F00FFF0>
12 28 -1 27 15] 73 @dc
[<
003FE000070000070000070000070000070000070000070007C7000C3700180F00300F0070
0700600700E00700E00700E00700E00700E00700E00700700700700700300F00180B000C33
0003C100>
19 26 -2 17 22] 113 @dc
[<
7F87FC000E01C0000E01C0000E01C0000E01C0000E01C0000E01C0000E01C0000E01C0000E
01C0000E01C0000E01C0000E01C0000E01C0000E01C0000E01C0000E01C000FFFFFC000E01
C0000E01C0000E01C0000E01C0000E01C0000E01C0000E03C1800703C3C00303E3C001C1B1
80007E1F00>
26 29 0 28 24] 11 @dc
@F2 @sf
[<
01FE000FFFC01E07F07801F87E01FCFF00FCFF00FEFF00FEFF00FE7E00FE3C00FE0000FC00
00FC0001F80001F00007C001FF0001FE00001F800007C00003E00003F01F03F01F03F83F81
F83F81F83F81F83F03F01E03F00F07E007FFC000FE00>
23 32 -2 31 28] 51 @dc
[<
03FFFFF80003FFFFF8000003F800000003F800000003F800000003F800000003F800000003
F800000003F800000003F800000003F800000003F800000003F800000003F800000003F800
000003F800000003F800000003F800000003F800000003F800000003F800000003F80000C0
03F800C0C003F800C0C003F800C0C003F800C0E003F801C0E003F801C06003F801807003F8
03807803F807807E03F80F807FFFFFFF807FFFFFFF80>
34 34 -2 33 39] 84 @dc
[<
FFE1FFC0FFE1FFC01F003E001F003E001F003E001F003E001F003E001F003E001F003E001F
003E001F003E001F003E001F003E001F003E001F003E001F003E001F803E001F803E001F40
3C001F307C001F1FF8001F07E0001F0000001F0000001F0000001F0000001F0000001F0000
001F0000001F0000001F0000001F0000001F000000FF000000FF000000>
26 35 -2 34 31] 104 @dc
[<
00FF0003FFC00FC0701F00303E00187E00007C00007C0000FC0000FC0000FC0000FFFFF8FF
FFF8FC00F8FC00F87C00F87C00F03E01F01E01E00F87C007FF8000FE00>
21 22 -2 21 26] 101 @dc
[<
FFF00000C0FFF00001C006000003C006000003C006000007C00600000FC00600001FC00600
003FC00600007FC00600007FC0060000FFC0060001FEC0060003FCC0060007F8C0060007F0
C006000FF0C006001FE0C006003FC0C006007F80C00600FF00C00600FE00C00601FE00C006
03FC00C00607F800C0060FF000C0060FE000C0061FE000C0063FC000C0067F8000C006FF00
00C007FE0000C007FC0000C0FFFC001FFEFFF8001FFE>
39 34 -2 33 44] 78 @dc
[<
FFFF8000FFFF800007F0000007F0000007F0000007F0000007F0000007F0000007F0000007
F0000007F0000007F0000007F0000007F0000007F0000007FFFF0007FFFFE007F007F007F0
01FC07F000FC07F0007E07F0007E07F0007F07F0007F07F0007F07F0007F07F0007F07F000
7E07F0007E07F000FC07F001FC07F007F0FFFFFFE0FFFFFF00>
32 34 -2 33 38] 80 @dc
@F9 @sf
[<
FFFE7FFE3FFE100218010C0106010300018000C0006000700038001C001C000E000E000F70
07F807F807F80FF00F400E400C201C183007C0>
16 28 -2 27 21] 50 @dc
42 @eop0
0 0 42 @bop1 262 307 a @F1 @sf(G)68 b(Guest)23 b(Accoun)n(ts)-599 91 y
@F9 @sf(The)17 b(computer)h(cen)o(ter)g(guest)g(p)q(olicy)f(is)g(among)e
(the)j(most)f(hotly)f(debated)i(topics)g(at)-1432 50 y(man)o(y)13 b
(computer)i(cen)o(ters.)21 b(F)m(rom)13 b(a)h(securit)o(y)i(standp)q(oin)o
(t,)d(it)h(should)g(b)q(e)h(ob)o(vious)f(that)-1432 50 y(an)d(attac)o(k)o
(er)h(who)f(has)g(access)q 13 x(to)g(a)g(guest)h(accoun)o(t)g(can)g(break)f
(in)o(to)g(a)g(computer)h(facilit)o(y)-1433 50 y(more)h(easily)m(.)-213
116 y @F2 @sf(G.1)55 b(A)n(ttac)n(k)19 b(Di\016cult)n(y)f(Ratios)-729 76 y
@F9 @sf(Basically)10 b(it)i(is)f(a)g(factor)h(of)f(ten)h(easier)g(to)g
(break)g(in)o(to)f(a)g(mac)o(hine)g(where)i(y)o(ou)e(can)h(easily)-1432
50 y(get)i(as)g(far)g(as)h(a)f(login)e(prompt)i(that)h(one)f(where)i(y)o
(ou)d(can't.)19 b(Being)c(able)f(to)g(reac)o(h)h(the)-1431 50 y(mac)o
(hine)e(through)g(a)g(standard)h(net)o(w)o(orking)f(discipline)g(and)g(op)q
(en)h(connections)h(to)e(the)-1431 50 y(daemons)g(is)g(w)o(orth)h(another)g
(order)g(of)f(magnitude.)18 b(Access)d(to)f(a)f(mac)o(hine)g(that)h(is)f
(run)-1431 50 y(b)o(y)k(the)i(same)f(group)g(is)g(w)o(orth)g(another)h
(factor)f(of)f(three)i(and)f(access)q 19 x(to)g(a)g(mac)o(hine)-1432 49 y
(on)e(the)g(same)h(LAN)f(w)o(ould)g(gran)o(t)g(a)g(factor)g(of)f(three)j
(b)q(ey)o(ond)f(that.)25 b(Ha)o(ving)15 b(a)h(guest)-1431 50 y(accoun)o(t)
11 b(on)f(the)h(target)g(mac)o(hine)g(mak)o(es)f(the)h(attac)o(k)g(still)f
(another)h(order)g(of)f(magnitude)-1432 50 y(easier.)-51 50 y(Essen)o
(tially)m(,)h(ha)o(ving)f(a)h(guest)i(accoun)o(t)f(on)f(the)h(target)g
(simpli\014es)f(an)g(attac)o(k)h(at)f(least)-1431 50 y(a)i(thousand)h
(fold)f(from)g(ha)o(ving)g(to)h(start)g(cold.)-764 116 y @F2 @sf(G.2)55 b
(Individual)18 b(Sp)r(onsors)-629 76 y @F9 @sf(I)c(strongly)f(suggest)i
(requiring)f(eac)o(h)h(guest)g(to)f(ha)o(v)o(e)f(an)h(individual)e(sta\013)j
(sp)q(onsor)g(who)-1432 50 y(tak)o(es)f(resp)q(onsibilit)o(y)f(for)h(the)g
(actions)g(of)f(his)h(guest.)-855 116 y @F2 @sf(G.3)55 b(The)19 b(No)f
(Guest)g(P)n(olicy)-662 77 y @F9 @sf(In)13 b(cen)o(ters)q 15 x(that)h
(prohibit)f(guests,)h(sta\013)g(mem)o(b)q(ers)h(often)f(share)g(their)g
(passw)o(ords)h(with)-1432 50 y(their)g(guests.)24 b(Since)15 b(these)i
(are)f(generally)f(privileged)g(accoun)o(ts,)h(this)f(is)g(a)g(signi\014can)o
(t)-1432 50 y(danger.)561 1066 y(42)-999 b
42 @eop1
41 @bop0
@F1 @sf
[<
FFFFFC0000FFFFFC0000FFFFFC000003FC00000003FC00000003FC00000003FC00000003FC
00000003FC00000003FC00000003FC00000003FC00000003FC03800003FC03800003FC0380
0003FC03800003FC07800003FC07800003FC1F800003FFFF800003FFFF800003FFFF800003
FC1F800003FC07800003FC07800003FC03800003FC03807003FC03807003FC03807003FC00
00F003FC0000E003FC0000E003FC0000E003FC0001E003FC0001E003FC0003E003FC000FE0
03FC003FC0FFFFFFFFC0FFFFFFFFC0FFFFFFFFC0>
36 41 -3 40 43] 70 @dc
[<
007FFFFFE000007FFFFFE000007FFFFFE00000003FC0000000003FC0000000003FC0000000
003FC0000000003FC0000000003FC0000000003FC0000000003FC0000000003FC000000000
3FC0000000003FC0000000003FC0000000003FC0000000003FC0000000003FC0000000003F
C0000000003FC0000000003FC0000000003FC0000000003FC0000000003FC0000000003FC0
0000E0003FC000E0E0003FC000E0E0003FC000E0E0003FC000E0E0003FC000E0F0003FC001
E0F0003FC001E070003FC001C078003FC003C078003FC003C07E003FC007C07F803FC03FC0
7FFFFFFFFFC07FFFFFFFFFC07FFFFFFFFFC0>
43 40 -2 39 48] 84 @dc
[<
FFFE3FFF80FFFE3FFF80FFFE3FFF800FE003F8000FE003F8000FE003F8000FE003F8000FE0
03F8000FE003F8000FE003F8000FE003F8000FE003F8000FE003F8000FE003F8000FE003F8
000FE003F8000FE003F8000FE003F8000FE003F8000FF003F8000FF003F8000FF803F8000F
F803F0000FEE03F0000FE787E0000FE1FFC0000FE07F00000FE00000000FE00000000FE000
00000FE00000000FE00000000FE00000000FE00000000FE00000000FE00000000FE0000000
0FE00000000FE0000000FFE0000000FFE0000000FFE0000000>
33 42 -3 41 38] 104 @dc
[<
03FE00000FFFC0003E0FE0007C03F0007E03F800FF01FC00FF01FE00FF01FE00FF01FE007E
01FE001801FE000001FE000001FE000001FE000001FE000001FE000001FE000001FE000001
FE000001FE000001FE000001FE000001FE000001FE000001FE000001FE000001FE000001FE
000001FE000001FE000001FE000001FE000001FE000001FE000001FE000001FE000001FE00
0001FE0001FFFFF001FFFFF001FFFFF0>
28 41 -3 40 36] 74 @dc
[<
0FC00000003FE00000007C78000000FE3C000000FE1E000000FE0E000000FE0F0000007C07
0000003807800000000380000000038000000001C000000001C000000003E000000003E000
000007F000000007F00000000FF80000000FF80000000FF80000001FDC0000001FDC000000
3FDE0000003F8E0000007F8F0000007F070000007F07000000FE03800000FE03800001FC01
C00001FC01C00003FC01E00003F800E00007F800F00007F000700007F0007000FFFE03FF80
FFFE03FF80FFFE03FF80>
33 39 -1 26 36] 121 @dc
[<
7FFF807FFF807FFF8007F00007F00007F00007F00007F00007F00007F00007F00007F00007
F00007F00007F00007F00007F00007F00007F00007F00007F00007F00007F00007F000FFFF
C0FFFFC0FFFFC007F00007F00007F00007F00007F00007F00007F00007F03E07F07F03F07F
03F87F01F87F00FE3E003FFC0007F0>
24 42 -2 41 21] 102 @dc
@F9 @sf
[<
3E006180F1C0F0C060E000E000E000E000E000E000E000E000E000E000E000E000E000E000
E000E000E000E000E000E000E00FE0000000000000000000000000000000C001E001E000C0
>
11 37 3 28 13] 106 @dc
[<
FFF07FF00F001F800F001F000F001E000F003C000F003C000F0078000F00F8000F00F0000F
01E0000F01E0000F83C0000F4780000F2780000F2F00000F1F00000F0E00000F0400000F02
00000F0100000F0080000F0040000F0020000F0010000F0008000F000C000F000F00FFF03F
E0>
28 28 -2 27 32] 75 @dc
[<
FFF80F80070007000700070007000700070007000700070007000700070007000700070007
0007000700070007000700C7003F0007000300>
13 28 -4 27 21] 49 @dc
41 @eop0
0 0 41 @bop1 262 307 a @F1 @sf(F)69 b(The)22 b(Jo)n(y)h(of)g(Broadcast)-757
91 y @F9 @sf(The)15 b(ma)r(jorit)o(y)f(of)h(the)h(lo)q(cal)f(area)g(nets)h
(\(LAN's\))g(use)g(a)f(system)h(called)g(broadcast.)22 b(It)-1431 50 y(is)
17 b(somewhat)g(lik)o(e)g(screaming)h(in)f(a)g(cro)o(wded)h(ro)q(om.)29 b
(Eac)o(h)18 b(p)q(erson)g(tends)h(to)e(try)h(to)-1432 50 y(ignore)13 b
(messages)i(that)f(w)o(eren't)h(mean)o(t)e(for)h(them.)-768 50 y(In)9 b
(this)g(t)o(yp)q(e)h(of)f(en)o(vironmen)o(t,)g(ea)o(v)o(es-dropping)h(is)f
(undetectable.)18 b(Often)10 b(passw)o(ords)-1431 49 y(are)17 b(sen)o(t)g
(unencrypte)q(d)h(b)q(et)o(w)o(een)g(mac)o(hines.)27 b(Suc)o(h)18 b(passw)o
(ords)f(are)h(fair)e(game)g(to)h(an)-1432 50 y(attac)o(k)o(er.)-96 50 y(V)m
(arious)9 b(cryptographic)h(solutions)g(including)f(digital)o 9 x
(signature)h(and)g(one)g(time)f(k)o(eys)-1431 50 y(ha)o(v)o(e)g(b)q(een)i
(used)g(to)f(com)o(bat)g(this)g(problem.)16 b(Kerb)q(eros,)c(dev)o(elop)q
(ed)f(at)f(the)g(MIT)g(A)o(thena)-1431 50 y(pro)r(ject)i(is)g(a)o(v)n(ail)o
(able)e(without)h(cost)i(and)e(presen)o(ts)q 13 x(one)h(of)f(the)h(few)g
(promising)e(p)q(oten)o(tial)-1432 49 y(solutions)j(to)h(the)g(broadcast)h
(problem.)50 1944 y(41)-999 b
41 @eop1
40 @bop0
@F1 @sf
[<
FFFFFFFFF0FFFFFFFFF0FFFFFFFFF003FC001FF803FC0003F803FC0001F803FC0000F803FC
00007803FC00003803FC00003C03FC00001C03FC00001C03FC00001C03FC01C01C03FC01C0
0E03FC01C00E03FC01C00E03FC03C00003FC03C00003FC0FC00003FFFFC00003FFFFC00003
FFFFC00003FC0FC00003FC03C00003FC03C00003FC01C03803FC01C03803FC01C03803FC01
C07803FC00007003FC00007003FC00007003FC0000F003FC0001F003FC0001F003FC0007F0
03FC001FE0FFFFFFFFE0FFFFFFFFE0FFFFFFFFE0>
39 41 -3 40 45] 69 @dc
[<
0E01FC00000F07FF80000F9E07E0000FF803F0000FF001F8000FE000FC000FE000FE000FE0
007F000FE0007F000FE0007F000FE0007F800FE0007F800FE0007F800FE0007F800FE0007F
800FE0007F800FE0007F800FE0007F000FE0007F000FE0007F000FE000FE000FE000FC000F
F000F8000FF801F0000FFE07E0000FE7FF80000FE1FE00000FE00000000FE00000000FE000
00000FE00000000FE00000000FE00000000FE00000000FE00000000FE00000000FE0000000
0FE00000000FE0000000FFE0000000FFE0000000FFE0000000>
33 42 -2 41 38] 98 @dc
[<
0FF0003FFC007C3E00FE1F00FE1F80FE0FC0FE0FE07C0FE0000FE0000FE0000FE0000FE000
0FE0000FE0000FE0000FE0000FE0000FE0000FE0000FE0000FE0000FE0000FE0000FE0000F
E0000FE0000FE0000FE0000FE0000FE0000FE0000FE0000FE0000FE0000FE0000FE001FFE0
01FFE001FFE0000000000000000000000000000000000000000000000700000F80001FC000
3FE0003FE0003FE0001FC0000F80000700>
19 55 4 42 21] 106 @dc
[<
00003FF800000003FFFF0000000FFFFFC000003FF007E00000FF8000F80001FE00003C0003
FC00001E0007F000000E000FF0000007001FE0000007001FE0000003803FC0000003803FC0
000003807FC0000003807F80000000007F8000000000FF8000000000FF8000000000FF8000
000000FF8000000000FF8000000000FF8000000000FF8000000000FF8000000000FF800000
00007F80000000007F80000003807FC0000003803FC0000003803FC0000007801FE0000007
801FE0000007800FF000000F8007F000001F8003FC00003F8001FE00007F8000FF8001FF80
003FF007DF80000FFFFF87800003FFFE038000003FF00180>
41 41 -4 40 50] 67 @dc
[<
FFFFF00000FFFFF00000FFFFF0000003FC00000003FC00000003FC00000003FC00000003FC
00000003FC00000003FC00000003FC00000003FC00000003FC00000003FC00000003FC0000
0003FC00000003FC00000003FC00000003FC00000003FFFFFE0003FFFFFF8003FC003FE003
FC000FF003FC0007F803FC0007FC03FC0003FC03FC0003FE03FC0003FE03FC0003FE03FC00
03FE03FC0003FE03FC0003FE03FC0003FE03FC0003FC03FC0007FC03FC0007F803FC000FF0
03FC003FE0FFFFFFFFC0FFFFFFFF00FFFFFFF800>
39 41 -3 40 47] 80 @dc
[<
FFFEFFFEFFFE0FE00FE00FE00FE00FE00FE00FE00FE00FE00FE00FE00FE00FE00FE00FE00F
E00FE00FE00FE00FE00FE0FFE0FFE0FFE0000000000000000000000000000007000F801FC0
3FE03FE03FE01FC00F800700>
15 43 -3 42 19] 105 @dc
@F5 @sf
[<
FFE7FFFFE7FF1F00F81F00F81F00F81F00F81F00F81F00F81F00F81F00F81F00F81F00F81F
00F81F80F81F80F81F40F01F31E01F0FC01F00001F00001F00001F00001F00001F00001F00
001F00001F0000FF0000FF0000>
24 29 -1 28 27] 104 @dc
[<
03F8000E0E001C03003C0180780180780000F80000F80000F80000F80000F80000F8000078
0E00781F003C1F001C1F000E0E0003FC00>
17 18 -2 17 21] 99 @dc
@F5 @sf
[<
83FC00EFFF00FC03C0F001C0E000E0C000E0C000F0C000F00000F00001F00003F0007FE007
FFE00FFFC03FFF803FFF007FFE00FFE000FE0000F80000F00060F00060F000E07000E07801
E03C07E01FFEE007F820>
20 28 -3 27 27] 83 @dc
[<
FFE000FFE0001F00001F00001F00001F00001F00001F00001F3F001FC1E01F80F01F00781F
007C1F003C1F003E1F003E1F003E1F003E1F003E1F003E1F003C1F007C1F00781F80F0FFE1
E0FF3F80>
23 26 -1 17 27] 112 @dc
@F9 @sf
[<
000007C0FFF01C200F003C200F0038100F0078100F0078100F0078000F0078000F0078000F
0078000F0078000F0078000F00F0000F00E0000F03C0000FFF00000F01E0000F0078000F00
3C000F001C000F001E000F001E000F001E000F001E000F001C000F003C000F0078000F01E0
00FFFF0000>
28 29 -2 27 31] 82 @dc
@F5 @sf
[<
03F007980F081F0C1F0C1F0C1F0C1F001F001F001F001F001F001F001F001F00FFFC3FFC0F
000F00070007000300030003000300>
14 26 -1 25 19] 116 @dc
@F5 @sf
[<
FFFC01FE00FFFC07C3000FC00FC1800FC01F81800FC01F81800FC01F80000FC01F80000FC0
1F80000FC01F80000FC01F80000FC01F80000FC03F00000FC03E00000FC07C00000FFFF000
000FC03E00000FC00F80000FC007C0000FC007E0000FC007E0000FC007E0000FC007E0000F
C007E0000FC007C0000FC00F80000FC03F0000FFFFFE0000FFFFF00000>
33 28 -2 27 36] 82 @dc
[<
FFE0FFE0FFE0FFE0>
11 4 -1 10 16] 45 @dc
@F5 @sf
[<
7FF8007FF8000F80000F80000F80000F80000F80000F80000F80000F80000F80000F80000F
80000F80000F80000F8000FFF800FFF8000F80000F80000F80000F80000F80000F83800F87
C00787C003C7C001E380007F00>
18 29 0 28 15] 102 @dc
@F9 @sf
[<
001F00000070C00000C02000018010000380100007800800070008000F0004000F0004000F
0004000F0004000F0004000F0004000F0004000F0004000F0004000F0004000F0004000F00
04000F0004000F0004000F0004000F0004000F0004000F0004000F0004000F0004000F000E
00FFF07FC0>
26 29 -2 27 31] 85 @dc
[<
001FC00000E0300001800800070004000E0002001C0001001C000100380000807800008078
00008070000080F0000000F0000000F0000000F0000000F0000000F0000000F0000000F000
0000700000807800008078000080380001801C0001801C0003800E00038007000780018019
8000E06180001F8080>
25 30 -2 28 30] 67 @dc
[<
07E00C301818300C300C700E60066006E007E007E007E007E007E007E007E007E007E007E0
07E007E00760066006700E300C300C18180C3003C0>
16 29 -2 27 21] 48 @dc
40 @eop0
0 0 40 @bop1 262 307 a @F1 @sf(E)68 b(Ob)t(ject)22 b(Co)r(de)g(Protection)
-835 91 y @F9 @sf(T)m(o)9 b(k)o(eep)i(ob)r(ject)h(co)q(de)f(safe)g(from)f
(h)o(uman)g(attac)o(k)o(ers)h(and)f(virus,)h(a)f(v)n(ariet)o(y)g(of)g(tec)o
(hniques)-1430 50 y(ma)o(y)i(b)q(e)j(emplo)o(y)o(ed.)-328 91 y @F5 @sf
(Chec)o(ksums.)k @F9 @sf(Sa)o(ving)c(the)i(c)o(hec)o(ksums)h(of)d(eac)o(h)i
(of)e(the)i(system)g(\014les)f(in)g(a)g(protected)-1327 50 y(area)d(an)g
(p)q(erio)q(dically)e(comparing)h(the)i(stored)f(c)o(hec)o(ksum)h(with)f
(those)g(computed)-1328 50 y(from)f(the)h(\014le's)g(curren)o(t)h(con)o
(ten)o(ts)f(is)g(a)f(common)f(and)i(mo)q(derately)f(e\013ect)q(iv)o(e)h(w)o
(a)o(y)-1329 50 y(to)h(detect)i(the)e(alteration)f(of)h(system)g(\014les.)
-805 83 y @F5 @sf(Source)g(Comparisons.)20 b @F9 @sf(Rather)15 b(than)g
(just)h(using)f(a)g(c)o(hec)o(ksum)h(the)g(complete)f(\014les)-1328 49 y
(ma)o(y)e(b)q(e)i(compared)f(against)f(a)g(kno)o(wn)h(set)g(of)g(sources.)
19 b(This)14 b(requires)h(a)f(greater)-1328 50 y(storage)h(commitmen)o(t.)
-487 83 y @F5 @sf(File)h(Prop)q(ert)o(ies.)k @F9 @sf(Rather)10 b(the)h
(computing)e(a)h(c)o(hec)o(ksum,)h(some)g(facilit)o(y)o 9 x(store)g
(certain)-1328 50 y(attributes)g(of)f(\014les.)17 b(Among)10 b(these)h
(are)g(the)g(length)f(and)g(lo)q(cation)f(on)h(the)h(ph)o(ysical)-1329 50 y
(disk.)22 b(While)14 b(these)j(c)o(haracteristics)g(are)e(easy)h(to)f
(preserv)o(e,)i(the)e(naiv)o(e)g(attac)o(k)o(er)-1328 50 y(ma)o(y)e(not)h
(kno)o(w)f(that)h(they)h(are)f(imp)q(ortan)o(t.)-823 83 y @F5 @sf
(Read-Only)h(Devices.)20 b @F9 @sf(Where)g(practical,)e(the)h(system)h
(sources)g(should)e(b)q(e)h(stored)-1328 50 y(on)12 b(a)f(device)i(that)f
(do)q(es)g(not)g(p)q(ermit)g(writing.)17 b(On)12 b(man)o(y)f(system)h
(disk)g(partitions)-1329 49 y(ma)o(y)h(b)q(e)i(moun)o(ted)f(as)f
(\\Read-Only)m(.")-719 83 y @F5 @sf(Dates.)20 b @F9 @sf(On)c(man)o(y)e
(systems)j(the)f(last)g(mo)q(di\014cation)e(date)i(of)f(eac)o(h)h(\014le)g
(is)f(stored)i(and)-1329 50 y(recen)o(t)i(mo)q(di\014cations)d(of)g
(system)i(\014les)f(are)g(rep)q(orted)q 18 x(to)g(the)g(system)h(adminis-)
-1330 50 y(trator.)-221 83 y @F5 @sf(Refresh)o(.)i @F9 @sf(Some)12 b
(system)h(automaticall)o(y)e(re-install)g(system)i(soft)o(w)o(are)f(on)o
(to)g(there)h(ma-)-1329 50 y(c)o(hines)j(on)f(a)g(regular)g(basis.)22 b
(Users)17 b(of)d(TRA)o(CK)h(often)g(do)g(this)g(daily)f(to)h(assure)-1327
50 y(that)f(systems)h(ha)o(v)o(e)f(not)g(b)q(e)g(corrupted.)-64 1138 y(40)
-999 b
40 @eop1
39 @bop0
@F2 @sf
[<
03F8000FFF001C1F803007C07007E0FC03F0FC03F0FE03F8FE03F87C03F83803F80003F800
03F80003F00003F01803E01807E01E0FC01FFF0019FC001800001800001800001800001BC0
001FF8001FFE001FFF001FFF801FFFC01E01E0100020>
21 32 -3 31 28] 53 @dc
@F9 @sf
[<
7FC7FCFF800E00E01C000E00E01C000E00E01C000E00E01C000E00E01C000E00E01C000E00
E01C000E00E01C000E00E01C000E00E01C000E00E01C000E00E01C000E00E01C000E00E01C
000E00E01C000E00E01C00FFFFFFFC000E00E000000E00E000000E00E000000E00E000000E
00E000000E00E018000E01E03C000701F03C000380F0180001C09C1800003F07E000>
33 29 0 28 35] 14 @dc
@F2 @sf
[<
00FF0003FFC00783E00F00F01E00F83E007C3C007C7C007E7C007E7C007EFC007EFC007EFC
007EFC007EFE007CFE007CFF00F8FD80F0FCFFE0FC7FC0FC08007C00007C00007E00F03E01
F83E01F81F01F80F01F807C0F003F07000FFE0001F80>
23 32 -2 31 28] 54 @dc
[<
0003FE0000001FFFC00000FF00F00001F800380003F0000C0007C00006000F800003001F80
0003003F000003803F000001807F000001807E000001807E00000000FE00000000FE000000
00FE00000000FE00000000FE00000000FE00000000FE00000000FE000000007E000001807E
000001807F000001803F000003803F000003801F800007800F8000078007C0000F8003E000
1F8001F8003F8000FF01E380001FFF81800003FE0080>
33 34 -3 33 40] 67 @dc
[<
FFE0FFE0FFE0FFE0FFE0FFE01F001F001F001F001F001F001F001F001F001F001F001F001F
001F001F001F001F001F001F001F001F001F001F001F001F001F001F001F001F001F001F00
1F001F001F001F001F001F001F001F001F001F001F001F801F801F001F801F801F001F403E
403E001F303E303E00FF1FFC1FFC00FF07F007F000>
43 22 -2 21 47] 109 @dc
@F9 @sf
[<
804020201010101070F0F0600000000000000000000060F0F060>
4 26 -4 17 12] 59 @dc
@F2 @sf
[<
01E00003F00003F00003F00003F00003F00003F00003F00001F00001F00001F00000F00000
F00000F000007800007800003800001800001C00000C00000600C00300C00300C00180E000
C0E000607FFFF07FFFF87FFFF87FFFFC7FFFFE7FFFFE780000600000>
23 34 -3 33 28] 55 @dc
[<
FFFF83FFFEFFFF83FFFE07F0001FC007F0001FC007F0001FC007F0001FC007F0001FC007F0
001FC007F0001FC007F0001FC007F0001FC007F0001FC007F0001FC007F0001FC007F0001F
C007F0001FC007F0001FC007FFFFFFC007FFFFFFC007F0001FC007F0001FC007F0001FC007
F0001FC007F0001FC007F0001FC007F0001FC007F0001FC007F0001FC007F0001FC007F000
1FC007F0001FC007F0001FC0FFFF83FFFEFFFF83FFFE>
39 34 -2 33 44] 72 @dc
@F9 @sf
[<
0F8030C0203070107818780C300C000E0006000607C70C271817300F700F6007E007E007E0
07E007E007E006E006600E700C300C18180C3003C0>
16 29 -2 27 21] 57 @dc
39 @eop0
0 0 39 @bop1 324 307 a @F9 @sf(I)16 b(\(p)q(ersonally\))g(suggest)i
(stressing)f(the)g(hard)f(w)o(ork)g(of)g(y)o(our)g(sta\013)h(and)f(the)h
(incon-)-1432 50 y(v)o(enience)j(to)e(the)i(legitimate)e(users)i(and)f
(sta\013)g(mem)o(b)q(ers.)34 b(T)m(o)18 b(the)i(exten)o(t)g(practical)-1432
50 y(p)q(ortra)o(y)f(the)g(crac)o(k)o(er)h(as)f(inconsiderate)h(and)f
(immature)f(and)h(try)g(to)f(a)o(v)o(oid)g(making)-1433 50 y(him)13 b
(seem)h(brillian)o(t)e(at)i(one)g(extreme)h(or)f(the)h(attac)o(k)e(seem)i
(v)o(ery)f(simple)g(at)f(the)i(other.)-1427 116 y @F2 @sf(D.5)55 b
(Prosecution)-432 76 y @F9 @sf(If)13 b(y)o(ou)f(considering)i
(prosecution,)g(y)o(ou)f(need)h(to)f(consult)h(with)f(y)o(our)g(legal)g
(counsel)h(and)-1432 50 y(la)o(w)e(enforcemen)o(t)j(o\016cial)e(for)g
(advise)h(on)g(press)h(handling.)-960 116 y @F2 @sf(D.6)55 b(No)19 b
(Commen)n(t)-472 77 y @F9 @sf(One)f(common)f(strategy)i(for)f(a)o(v)o
(oiding)o 17 x(\(or)g(at)g(least)g(b)q(ounding\))g(time)f(loss)h(with)g
(the)-1431 50 y(press)d(is)f(to)h(simply)e(decline)i(to)f(commen)o(t)g(on)g
(the)h(situation)f(at)g(all.)k(IF)c(y)o(ou)g(are)h(going)-1433 50 y(to)g
(adopt)f(this)i(approac)o(h,)f(y)o(our)g(public)g(a\013airs)g(o\016ce)g
(can)g(advise)h(y)o(ou)e(on)h(tec)o(hniques)-1430 49 y(to)d(use.)18 b(It)
13 b(is)f(imp)q(ortan)o(t)f(to)i(tell)f(ev)o(ery)o(one)h(who)f(is)g(in)o
(v)o(olv)o(ed)f(in)h(the)h(inciden)o(t)g(that)f(they)-1431 50 y(should)17 b
(not)g(discuss)h(the)g(situation;)g(otherwise)h(p)q(eople)e(will)f(leak)h
(things)g(acciden)o(tly)m(.)-1432 50 y(Also,)d(without)h(correct)i
(informati)o(on)d(from)g(y)o(our)h(cen)o(ter,)h(the)g(press)g(ma)o(y)f
(prin)o(t)f(man)o(y)-1432 50 y(inaccurate)g(things)g(that)g(represe)q(n)o
(t)h(their)f(b)q(est)h(guesses)q(.)-923 116 y @F2 @sf(D.7)55 b(Honest)n(y)
-343 77 y @F9 @sf(I)17 b(recommend)h(against)e(trying)h(to)g(mislead)g
(the)h(press.)29 b(It)18 b(is)f(hard)g(to)h(k)o(eep)f(a)g(secr)q(et)-1430
50 y(forev)o(er)c(and)f(when)h(and)f(if)g(the)h(press)h(\014nds)f(that)f
(y)o(ou)g(ha)o(v)o(e)h(lied)f(to)g(them,)h(the)g(negativ)o(e)-1432 49 y
(co)o(v)o(erage)h(that)h(y)o(ou)f(ma)o(y)g(receiv)o(e)i(will)d(probably)h
(far)g(exceed)i(the)f(scop)q(e)h(of)e(the)h(actual)-1432 50 y(inciden)o
(t.)539 1257 y(39)-999 b
39 @eop1
38 @bop0
@F1 @sf
[<
FFFFFFFC0000FFFFFFFF8000FFFFFFFFE00003FC001FF80003FC0003FC0003FC0001FE0003
FC00007F0003FC00007F8003FC00003FC003FC00001FC003FC00001FE003FC00001FE003FC
00000FF003FC00000FF003FC00000FF003FC00000FF803FC00000FF803FC00000FF803FC00
000FF803FC00000FF803FC00000FF803FC00000FF803FC00000FF803FC00000FF803FC0000
0FF803FC00000FF003FC00000FF003FC00000FF003FC00000FF003FC00001FE003FC00001F
E003FC00001FC003FC00003FC003FC00007F8003FC0000FF0003FC0001FE0003FC0007FC00
03FC001FF800FFFFFFFFE000FFFFFFFF8000FFFFFFF80000>
45 41 -3 40 53] 68 @dc
/@F6 @newfont
@F6 @sf
[<
7FFE000003C0000001C0000001C0000001C0000001C0000000E0000000E0000000E0000000
E000000070000000700000007000000070000000380000003800000038000000380000001C
0000801C0080801C0080401C0080400E0080600E0080200E0080300E00C01C0701C01FFFFF
C0>
26 28 -7 27 30] 84 @dc
[<
1E00318060C0E060E030E038E018E01CE01CE01C700E700E300E380C180C0C0C071801E0>
15 18 -5 17 21] 111 @dc
[<
603800E0640070E40070E20070E20070E20038E00038E00039C0003F80001E00001D00001C
80001C83000E43800E23800E11000E0F000700000700000700000700000380000380000380
0003800001C00001C0000FC000>
17 29 -3 28 19] 107 @dc
[<
1F0030C060206010E008E000E000E000E000E0007F8070607010381018080C10071001E0>
13 18 -5 17 19] 101 @dc
[<
FF80003C00001C00001C00001C00001C00000E00000E00000E70000E8C0007060007070007
03000703800381800381C00381C00381C001C0E001C0E011C0E011C0E008E0C008E0C004D9
80078700>
19 26 -1 17 21] 112 @dc
[<
078E001C59001839001838803838803838801C1C001C1C001C1C001C1C000E0E000E0E0087
0E00870E004707004707002707001E0300>
17 18 -4 17 22] 117 @dc
[<
3000700038003800380038001C001C001C001C000E000E008E008E064707468726C23C3C>
16 18 -4 17 18] 114 @dc
[<
300C01C0701C0320380E0710380E0708380E0388380E03881C0703801C0701C01C0701C01C
0701C00E0380E00E0380E08E0380E08E0380E04703C0E04683A0E0266318C03C1E0780>
29 18 -4 17 34] 109 @dc
[<
3C38626461E4C0E2C0E2E0E2E070E070E070E0707038703830383838181C0C3C063C03CC>
15 18 -5 17 21] 97 @dc
[<
1F0030C06020E010E008E000E000E000E000E0007000700030003838181C0C08070801F0>
14 18 -5 17 19] 99 @dc
[<
601C00E03200707100707080703880703880383800381C00381C00381C001C0E001C0E001C
0E001C0E000E0E000F0E000E8C000E78000700000700000700000700000380000380000380
0003800001C00001C0000FC000>
17 29 -3 28 21] 104 @dc
[<
3C0072007200710071007100380038001C001C001C000E008E008E004700470026001C0000
00000000000000000000000000010003800180>
9 28 -4 27 13] 105 @dc
[<
300E00701900383880383840381C40381C401C1C001C0E001C0E001C0E000E07000E07008E
07008E07004707004687002646003C3C00>
18 18 -4 17 23] 110 @dc
[<
1F0060C08060C030E03060300038007807F00FF01FC01F001C0018180C1C0C08060801F0>
14 18 -3 17 17] 115 @dc
[<
780000CC0000E60000C6000007000003000003000003800003800003800001C00001C00001
C00001C00001C00000E00000E00000E00000E00000E0000070000070000070000070000070
0003FF80003800003800003800003800003800001C00001C00001C60000C700006700003C0
>
20 37 1 28 13] 102 @dc
[<
804040201010080838783818>
5 12 -3 3 13] 44 @dc
[<
07C3C00C26301C1C10181C08181C04180C041C0E041C0E021C0E021C0E020E07010E070187
07018707014703834703872703871E0183>
24 18 -4 17 28] 119 @dc
[<
3C380062640061E400C0E200C0E200E0E200E07000E07000E07000E0700070380070380030
3800383800181C000C3C00063C0003DC00000E00000E00000E00000E000007000007000007
00000700000380000380001F80>
17 29 -5 28 21] 100 @dc
[<
0E00190038803840384038401C001C001C001C000E000E000E000E00070007000700FFE003
8003800380038001C001C001C000C0>
11 26 -3 25 14] 116 @dc
[<
FFC0FFC0FFC0>
10 3 -3 9 15] 45 @dc
[<
60F07830>
5 4 -4 3 13] 46 @dc
@F6 @sf
[<
1000600000180060000018007000001C007000001C007800001E007800001E007400001D00
7400001D807200001C807200001C407100001C407180001C207080001C207040001C107040
001C107020001C087020001C087010001C047010001C047008003802700800380270040038
0170040038017002003800F002003800F0010038007001803C007001C0FF83FF0FF0>
36 29 -9 27 41] 87 @dc
[<
07800C4018201810380818081C081C041C041C040E020E02870287024706470E270E1E06>
15 18 -4 17 19] 118 @dc
[<
7E00C300E1C0C0C000E000E0007000700F7018F01878303830383838381C381C381C381C1C
0E1C0E0C0E0E0E0607030F018F00F3>
16 26 -3 17 19] 103 @dc
@F2 @sf
[<
FFF00600FFFFFFF00F00FFFF06000F0007E006001F8007E006001F8007E006001F8007E006
003FC007E006003FC007E006007E6007E006007E6007E00600FC3007E00600FC3007E00601
F81807E00601F81807E00601F81807E00603F00C07E00603F00C07E00607E00607E00607E0
0607E0060FC00307E0060FC00307E0060FC00307E0061F800187E0061F800187E0063F0000
C7E0063F0000C7E0067E000067E0067E000067E006FC000037E006FC000037E006FC000037
E007F800001FE0FFF800001FFFFFF000000FFF>
48 34 -2 33 53] 77 @dc
[<
01FF000FFFE03F01F87C007C78003CF0001EF0001EF0001EF0001E70003E3800FC1FFFFC0F
FFF81FFFF03FFF8038000030000030000013FC001FFF001F0F803E07C03C03C07C03E07C03
E07C03E07C03E07C03E03C03C03E07CF1F0F8F0FFF7F03FC1E>
24 33 -2 21 28] 103 @dc
@F2 @sf
[<
00FFFE00FFFE0007E00007E00007E00007E00007E00007E00007E0FFFFFEFFFFFEE007E070
07E03807E01807E00C07E00E07E00707E00307E00187E001C7E000E7E00077E00037E0001F
E0001FE0000FE00007E00003E00003E00001E00000E0>
23 32 -2 31 28] 52 @dc
[<
FFFFFFFCFFFFFFFC07F001FC07F0003E07F0001E07F0000E07F0000E07F0000607F0000607
F0000607F0000307F0180307F0180307F0180007F0180007F0380007F0780007FFF80007FF
F80007F0780007F0380007F0180007F0180607F0180607F0180607F0000607F0000E07F000
0E07F0000C07F0001C07F0003C07F000FCFFFFFFFCFFFFFFFC>
32 34 -2 33 37] 69 @dc
[<
FF80FFE0FF80FFE00E003E0007007E000380FC0001C0F80000C1F0000063E0000037C00000
3FC000001F8000001F0000003F0000007F800000F9800001F8C00003F0600003E0700007C0
38000F801C00FFE07FC0FFE07FC0>
27 22 -1 21 30] 120 @dc
@F9 @sf
[<
7FCFF80E01C00E01C00E01C00E01C00E01C00E01C00E01C00E01C00E01C00E01C00E01C00E
01C00E01C00E01C00E01C00E01C0FFFFC00E01C00E01C00E01C00E01C00E01C00E01C00E01
C00703C00303C001C1C0007FC0>
21 29 0 28 23] 13 @dc
[<
001F800000E060800180118007000B800E0007801C0007801C000780380007807800078078
00078070000780F0000F80F000FFF0F0000000F0000000F0000000F0000000F0000000F000
0000700000807800008078000080380001801C0001801C0003800E00038007000780018019
8000E06180001F8080>
28 30 -2 28 33] 71 @dc
38 @eop0
0 0 38 @bop1 262 307 a @F1 @sf(D)68 b(Handling)24 b(the)f(Press)-699 91 y
@F9 @sf(Often)c(media)g(inquiries)g(can)g(absorb)g(more)g(time)g(than)g
(all)f(of)h(the)h(others)g(issues)g(in)-1432 50 y(inciden)o(t)12 b
(handling)g(com)o(bined.)17 b(It)c(is)f(imp)q(ortan)o(t)g(to)h(understand)h
(this)e(and)h(to)f(use)i(y)o(our)-1432 50 y(public)g(a\013airs)g(o\016ce)h
(if)f(it)g(exists.)21 b(In)15 b(the)g(excitemen)o(t,)h(p)q(eople,)f(esp)q
(ecially)f(those)i(who)-1432 50 y(are)h(not)g(exp)q(erience)q 18 x(sp)q
(eak)o(ers)q 18 x(will)f(often)h(forget)g(that)g(they)h(are)g(not)f(emp)q
(o)o(w)o(ered)h(to)-1432 49 y(sp)q(eak)c(for)g(the)g(cen)o(ter)i(and)d
(that)h(nothing)f(is)h(ev)o(er)h(really)e(said,)g(\\O\013)h(the)h
(record.")-1345 117 y @F2 @sf(D.1)55 b(Spin)19 b(Con)n(trol)-456 76 y
@F9 @sf(The)12 b(phrase)g(\\Spin)f(Con)o(trol")g(w)o(as)g(\014rst)h(used)h
(in)e(p)q(olitical)f(circles.)18 b(It)12 b(refers)h(to)e(altering)-1432
50 y(the)h(p)q(erce)q(ptions)h(ab)q(out)g(an)f(inciden)o(t)g(rather)h
(than)g(the)g(dela)o(ying)e(with)h(the)h(facts)f(of)g(the)-1431 50 y
(inciden)o(t)h(themselv)o(es.)20 b(Consider)14 b(the)g(t)o(w)o(o)g
(statemen)o(ts.)-861 91 y(1.)20 b @F6 @sf(T)m(o)d(ke)n(ep)g(our)f
(machines)h(safe,)g(we)f(de)n(cide)n(d)h(to)g(disc)n(onne)n(ct)g(them)g
(fr)n(om)f(the)h(net-)-1329 50 y(work.)-152 83 y @F9 @sf(2.)j @F6 @sf(We)c
(wer)n(e)e(for)n(c)n(e)n(d)h(to)g(shut)g(down)h(our)f(network)g(c)n(onne)n
(ctions)h(to)f(pr)n(event)g(damage)-1328 50 y(to)g(our)g(machines.)-347
91 y @F9 @sf(I)10 b(ha)o(v)o(e)g(found)g(that)g(the)h(giving)e(the)i
(press)g(a)f(state)h(lik)o(e)f(the)h(former)f(tends)h(to)f(pro)q(duce)-1430
50 y(a)15 b(laudatory)g(piece)i(ab)q(out)e(one's)h(sta\013)g(while)g(a)f
(statemen)o(t)i(lik)o(e)e(the)h(latter,)g(pro)q(duces)-1430 50 y(an)d(em)o
(barrassing)h(piece.)19 b(The)14 b(t)o(w)o(o)g(statemen)o(ts)h(are)f(of)f
(course)j(essen)o(tially)d(iden)o(tical.)-1347 50 y(Y)m(our)f(public)g
(a\013airs)g(group)h(is)f(probably)g(famil)o(iar)f(with)h(these)i(issues)g
(and)e(can)h(help)-1432 49 y(y)o(ou)g(form)g(press)i(statemen)o(ts)-474
117 y @F2 @sf(D.2)55 b(Time)18 b(Con)n(trol)-474 76 y @F9 @sf(With)e(a)h
(su\016cien)o(tly)f(large)h(inciden)o(t,)g(the)h(media)e(atten)o(tion)h
(can)g(absorb)h(almost)e(un-)-1432 50 y(b)q(ounded)h(amoun)o(ts)e(of)h
(time.)25 b(The)17 b(press)h(will)d(often)h(call)g(emplo)o(y)o(ees)h(at)f
(home.)25 b(It)17 b(is)-1432 50 y(imp)q(ortan)o(t)c(the)h(sta\013)h(that)f
(are)h(solving)d(a)i(problem)g(understand)h(that)f(the)h(solving)e(the)-1431
50 y(inciden)o(t)g(is)h(more)g(imp)q(ortan)o(t)f(that)g(dealing)g(with)h
(the)g(press.)19 b(A)o(t)14 b(the)h(v)o(ery)f(least)g(insist)-1432 49 y
(that)19 b(all)e(press)k(represe)q(n)o(tativ)o(es)f(go)f(through)g(the)g
(public)g(a\013airs)g(often)g(so)g(that)g(the)-1431 50 y(standard)14 b
(questions)g(can)g(b)q(e)h(easily)e(and)h(time-e\016cien)o(tly)f(b)q(e)i
(answ)o(ered.)-1196 116 y @F2 @sf(D.3)55 b(Hero)18 b(Making)-466 77 y
@F9 @sf(The)d(press)h(lik)o(es)f(to)g(\014nd)g(outstanding)g(hero)q(es)h
(and)f(villai)o(ns.)21 b(As)15 b(a)g(result,)h(the)f(media)-1432 50 y
(will)e(tend)j(to)e(mak)o(e)h(one)g(of)f(y)o(our)h(sta\013)g(mem)o(b)q
(ers)h(in)o(to)e(a)h(hero)g(if)g(at)f(all)g(p)q(ossible)h(from)-1432 50 y
(them)g(to)f(do)h(so.)21 b(It)15 b(is)g(more)f(lik)o(ely)g(than)h(not)g
(that)g(the)g(Hero)g(will)f(not)h(b)q(e)g(the)g(p)q(erson)-1430 49 y(who)e
(has)h(w)o(ork)o(ed)g(the)h(hardest)g(or)e(the)i(longest.)-784 117 y @F2 @sf
(D.4)55 b(Discouraging)18 b(or)h(Encouraging)f(a)h(Next)f(Inciden)n(t)-1258
76 y @F9 @sf(The)g(atten)o(tion)f(that)h(an)f(inciden)o(t)h(receiv)o(es)h
(greatly)e(a\013ect)i(the)f(lik)o(eliho)q(o)q(d)e(of)h(future)-1431 50 y
(inciden)o(ts)12 b(at)g(that)g(particular)g(site.)18 b(It)12 b(probably)g
(also)f(in\015uences)j(the)e(decision)h(pro)q(cess)-1430 50 y(or)g(p)q
(oten)o(tial)g(future)h(crac)o(k)o(ers)h(in)e(the)h(comm)o(unit)o(y)e(at)i
(large.)j(Claiming)o 12 x(that)d(y)o(our)f(site)-1431 50 y(is)i(in)o
(vulnerable)g(is)g(an)g(in)o(vitation)f(to)h(a)g(future)h(inciden)o(t.)23 b
(Giving)14 b(the)i(media)e(step)j(b)o(y)-1432 50 y(step)c(instructions)g
(on)g(ho)o(w)f(to)g(break)h(in)f(to)h(a)f(computer)h(is)f(also)g(not)h(a)f
(w)o(onderful)g(idea.)-737 159 y(38)-999 b
38 @eop1
37 @bop0
@F1 @sf
[<
C01FF000E0FFFE00F3FFFF00FFE01F80FF0007C0FC0003E0F80003F0F00001F0F00001F0E0
0001F8E00001F8E00001F8600001F8000003F8000007F800000FF800007FF00007FFF000FF
FFE003FFFFE007FFFFC00FFFFF801FFFFE003FFFFC007FFFE0007FFE0000FFC00000FF0000
00FE0000E0FE0000E0FC0000E0FC0001E0FC0001E07C0001E07C0003E03E0007E01F001FE0
0F807FE007FFF9E003FFF0E0007F8060>
29 41 -4 40 38] 83 @dc
[<
0001C000000003E000000003E000000007F000000007F00000000FF80000000FF80000000F
F80000001FDC0000001FDC0000003FDE0000003F8E0000007F8F0000007F070000007F0700
0000FE03800000FE03800001FC01C00001FC01C00003FC01E00003F800E00007F800F00007
F000700007F0007000FFFE03FF80FFFE03FF80FFFE03FF80>
33 27 -1 26 36] 118 @dc
@F9 @sf
[<
60F0F0600000000000000000000060F0F060>
4 18 -4 17 12] 58 @dc
[<
0080008007E018902088408440828082E083F083F08360870087008E00BE03FC0FF81FF03F
C07E80F080E080C086C08FC08FC087408160823084189807E000800080>
16 33 -2 30 21] 36 @dc
[<
07C018702038401C401E800EF00FF00FF00F600F000F000F000F000E200E301C2818243023
E02000200020002000200020003FC03FF03FF8300C>
16 29 -2 27 21] 53 @dc
[<
03E00C301818300C300E700660076007E007E007E007E007E007E006F00EF00CE818E430E3
E0600070007000300C301E181E0C0E0604030C00F0>
16 29 -2 27 21] 54 @dc
@F6 @sf
[<
38006800E400E400E400E400700070007000700038003800380038001C001C001C001C000E
000E000E000E000700070007000700038003801F80>
9 29 -4 28 11] 108 @dc
[<
3C0047008180E1C0E0C000E00070007007F01C7018381838383838381C1C1C1C1C1C1C1C0E
0E0E0E870E870E4707470727071E03>
16 26 -4 17 20] 121 @dc
@F6 @sf
[<
FF8010001C0010000C00180004003800040038000400380002007400020074000200740002
00E4000100E2000100E2000101C2000101C2000081C1000081810000838100008381000043
8080004700800047008000470080002E0040002E0040002E0040003C0060001C007001FC03
FE>
31 28 -3 27 31] 78 @dc
@F9 @sf
[<
03000007800007800007800007800007800007800003800003800003800003800001800001
800001C00000C00000C0000040000060000020000010000010008008008004008004004002
007FFF007FFF007FFF80400000>
17 29 -2 27 21] 55 @dc
37 @eop0
0 0 37 @bop1 262 307 a @F1 @sf(C)68 b(Highly)24 b(Sensitiv)n(e)e(En)n
(viron)q(men)n(ts)-1046 91 y @F9 @sf(An)d(computing)h(en)o(vironmen)o(t)f
(should)h(b)q(e)g(considered)h(highly)e(sensitiv)o(e)h(when)g(it)g(is)-1432
50 y(p)q(oten)o(tially)11 b(pro\014table)i(to)g(co)o(v)o(ert)g(the)h(data)e
(or)h(when)g(great)g(incon)o(v)o(enience)h(and)f(losses)-1431 50 y(could)g
(result)h(from)e(errors)j(pro)q(duced)g(there.)k(In)13 b(particular,)g(y)o
(ou)g(should)g(consider)h(y)o(ou)-1432 50 y(site)g(sensitiv)o(e)g(if)f(an)o
(y)h(of)f(the)i(follo)o -1 x(wing)o 13 x(conditions)e(apply:)-914 91 y(1.)
20 b(Y)m(ou)14 b(pro)q(cess)h(data)f(that)g(the)g(go)o(v)o(ernmen)o(t)g
(considers)h(sensitiv)o(e.)-1105 83 y(2.)20 b(Y)m(ou)15 b(pro)q(cess)q 17 x
(\014nancial)g(transactions)h(suc)o(h)g(that)g(a)f(single)h(transaction)g
(can)f(ex-)-1328 50 y(ceed)h($25,00)o(0.0)o(0)c(or)i(the)h(total)e
(transactions)h(excee)q(d)h(2.5)e(Millio)o(n)g(dollars.)-1278 83 y(3.)20 b
(Y)m(ou)e(pro)q(cess)i(data)e(whose)h(time)f(of)f(release)j(is)e(tigh)o
(tly)f(con)o(trolled)h(and)g(whose)-1328 50 y(early)c(release)h(could)f
(giv)o(e)f(signi\014can)o(t)h(\014nancial)f(adv)n(an)o(tage.)-1045 83 y
(4.)20 b(Y)m(our)14 b(function)f(is)h(life)f(critical.)-564 83 y(5.)20 b
(Y)m(our)10 b(organization)f(has)h(enemies)h(that)f(ha)o(v)o(e)g(a)g
(history)g(of)f(\\terrorism")h(or)g(violen)o(t)-1329 49 y(protests.)-207
83 y(6.)20 b(Y)m(our)11 b(data)h(con)o(tains)f(trade)h(secre)q(te)h
(information)d(that)h(w)o(ould)g(b)q(e)h(of)f(direct)h(v)n(alue)-1329 50 y
(to)i(a)g(comp)q(etitor.)-336 92 y(Essen)o(tially)g(money)g(is)g(more)g
(directly)h(v)n(aluable)e(than)h(secre)q(ts)i(and)e(a)g(\\vilian")e(can)
-1431 49 y(p)q(oten)o(tially)17 b(steal)h(more)g(from)g(one)g(succes)q
(sful)h(attac)o(k)f(on)g(one)h(\014nancial)e(institution)-1432 50 y(than)j
(he)h(will)e(ev)o(er)j(b)q(e)f(able)f(to)g(get)h(selling)f(state)h(secre)q
(ts)h(for)e(decades)q(.)39 b(There)22 b(is)-1432 50 y(signi\014can)o(t)9 b
(concern)i(that)f(the)g(electrical)g(utilit)o(y)e(companies)i(and)f(and)h
(bank)f(conducting)-1431 50 y(electronic)14 b(funds)h(transfer)f(will)f(b)q
(e)h(targets)h(of)e(terrorists)j(in)d(thee)i(next)f(decade.)-1254 50 y(F)m
(or)i(cen)o(ters)q 18 x(the)i(m)o(ust)f(supp)q(ort)g(sensitiv)o(e)h(pro)q
(cessing)g(it)f(is)g @F6 @sf(str)n(ongly)j @F9 @sf(advised)d(to)-1432 49 y
@F6 @sf(c)n(ompletely)j @F9 @sf(separate)f(the)f(faciliti)o(es)f(for)g
(pro)q(cessing)i(this)e(data)g(from)g(those)h(faciliti)o(es)-1432 50 y
(used)e(to)g(pro)q(cess)h(ordinary)f(data)f(and)h(to)f(allo)o(w)g
(absolutely)g(no)g(connection)i(from)e(the)-1431 50 y(sensitiv)o(e)i(pro)q
(cess)q(ing)g(systems)i(to)e(the)g(outside)h(w)o(orld.)27 b(There)18 b(is)f
@F6 @sf(No)j @F9 @sf(substitute)e(for)-1432 50 y(ph)o(ysical)13 b(securit)o
(y)i(and)f(prop)q(er)h(separation)f(will)f(require)i(an)e(attac)o(k)o(er)i
(to)f(compromise)-1432 50 y(ph)o(ysical)g(securit)o(y)h(in)f(order)i(to)e
(p)q(enetrate)q 16 x(the)h(system.)21 b(T)m(ec)o(hniques)15 b(for)g
(coping)f(with)-1432 49 y(the)g(remaining)f(\\insider)h(threat")g(are)g(b)q
(ey)o(ond)h(the)f(scop)q(e)h(of)e(this)h(tutorial.)-1177 50 y(In)i
(analysis)f(of)h(computing)g(in)f(sensitiv)o(e)i(en)o(vironmen)o(ts,)g
(there)g(are)g(t)o(w)o(o)f(di\013eren)o(t)-1431 50 y(securit)o(y)g(goals.)
23 b(The)16 b(\014rst)h(is)e(that)h(of)f(protecting)i(the)f(system.)25 b
(All)15 b(of)g(the)h(advice)g(in)-1432 50 y(this)d(b)q(o)q(oklet)h(should)f
(b)q(e)i(considered)g(as)f(a)f(\014rst)h(step)h(to)o(w)o(ards)f(that)g
(goal.)o 17 x(The)g(second)-1430 50 y(goal)g(is)h(the)h(protection)g(of)f
(job)g(or)g(\\T)m(ec)o(hnical)g(Compliance.")22 b(This)15 b(is)h(is)f(the)h
(goal)e(of)-1432 50 y(sho)o(wing)g(that)h(all)f(of)g(the)i(regulations)f
(ha)o(v)o(e)g(b)q(een)h(follo)n(w)o(ed)e(and)h(that)g(protecting)h(the)-1431
49 y(system)e(has)g(b)q(een)h(done)f(with)g(\\due)g(diligence.")-730 50 y
(It)20 b(is)g(imp)q(ortan)o(t)f(to)h(realize)g(that)g(these)i(t)o(w)o(o)d
(securit)o(y)i(goals)e(are)i(separate)g(and)-1432 50 y(p)q(oten)o(tially)
12 b(con\015icting.)17 b(It)d(ma)o(y)e(b)q(e)i(necess)q(ary)h(to)e(w)o
(ork)g(to)o(w)o(ards)g(the)h(latter)g(the)g(goal)-1433 50 y(and)g(that)i
(is)e(often)i(more)f(a)f(legal)h(and)f(b)q(o)q(okk)o(eeping)h(question)h
(than)f(a)g(tec)o(hnical)g(one.)-1432 50 y(It)e(is)h(also)f(b)q(ey)o(ond)i
(the)f(scop)q(e)h(of)e(this)h(w)o(ork.)-30 399 y(37)-999 b
37 @eop1
36 @bop0
/@F10 @newfont
@F10 @sf
[<
FFF8FFF8070007000700070007000700070007000700070007000700070007000700070007
0007000700FFF8FFF8>
13 23 -3 22 20] 73 @dc
[<
00F003FC070C070E070E070E07000700070007000700070007000700FFFC7FFC0700070007
0007000300>
15 21 -1 20 20] 116 @dc
[<
FFFCFFFC0380038003800380038003800380038003800380038003807F807F800000000000
0000000300078007800300>
14 24 -3 23 20] 105 @dc
[<
CFE0FFF8F81CF006E0066006001C07F83FF07F80F000C038C03860383FF80FD8>
15 16 -2 15 20] 115 @dc
[<
0F8F803FFF80707C00E01C00E01C00E01C00701C003C1C001FFC0007FC00001C00001C0020
18007078007FF0001FC000>
17 16 -2 15 20] 97 @dc
[<
FFFEFFFE038003800380038003800380038003800380038003800380038003800380038003
8003800380FF80FF80>
15 23 -2 22 20] 108 @dc
[<
07C01FF03C78783C701CE00EE00EE00EE00EE00EE00E701C701C3C781FF007C0>
15 16 -2 15 20] 111 @dc
[<
07CFC01FEFC0383E00301E00700E00E00E00E00E00E00E00E00E00E00E00E00E00700E0030
1E001C3E000FFE0007CE00000E00000E00000E00000E00000E00007E00007E00>
18 23 -1 22 20] 100 @dc
[<
03E00003E00003E0000770000770000770000630000E38000E38000E38001C1C001C1C001C
1C001C1C00FE3F80FE3F80>
17 16 -1 15 20] 118 @dc
[<
0CF8001DFC001F0E001E03001C03801C01C01C01C01C01C01C01C01C01C01C01C01C03801E
03001F07001DFE001CF8001C00001C00001C00001C00001C0000FC0000FC0000>
18 23 0 22 20] 98 @dc
[<
03F00FFC1C1E380E70006000E000FFFEFFFEE00EE00E700C301C1C380FF007E0>
15 16 -2 15 20] 101 @dc
[<
03F00FFC1C1E380E70006000E000E000E000E0006000700038081C1C0FFC03F8>
15 16 -2 15 20] 99 @dc
[<
FFF000FFF0000E00000E00000E00000E00000E00000E00000E00000E00000F00000F00000F
81000EE380FE7F80FE1F00>
17 16 -1 15 20] 114 @dc
[<
7FFC7FFC038003800380038003800380038003800380038003800380FFFE7FFE0380038003
80038401CE00FE007C>
15 23 -1 22 20] 102 @dc
[<
FE79E0FEFBE038E38038E38038E38038E38038E38038E38038E38038E38038E38038E3803C
F3803CF380FFDF00FB8E00>
19 16 0 15 20] 109 @dc
[<
FF8FE0FF8FE01C07001C07001C07001C07001C07001C07001C07001C07001C07001C07001E
07001F86001DFE001C78001C00001C00001C00001C00001C0000FC0000FC0000>
19 23 0 22 20] 104 @dc
[<
3C00007E000077000073800003800001C00001C00001C00001E00001E00001E00003700003
70000730000730000738000E38000E38000E1C001C1C001C1C001C1C00FE3F80FE3F80>
17 24 -1 15 20] 121 @dc
[<
FF8FE0FF8FE01C07001C07001C07001C07001C07001C07001C07001C07001C07001C07001E
07001F8600FDFE00FC7800>
19 16 0 15 20] 110 @dc
[<
70F8F8F870>
5 5 -7 4 20] 46 @dc
[<
0080018001800FC01FF039B8718CE186E186E1864186018E019C01F80FF03FE07F807180C1
84C18EC18EC18E619C39BC1FF007E0018001800080>
15 29 -2 25 20] 36 @dc
[<
FE3E00FE3E00383E00386E00386E00386E00386E0038EE0038CE0038CE0039CE0039CE0039
CE00398E00398E003B8E003B0E003B0E003B0E003B0E003E0E00FE3F80FE3F80>
17 23 -1 22 20] 78 @dc
[<
1FF07FFC783C701CE00EE00EE00EE00EE00EE00EE00EE00EE00EE00EE00EE00EE00EE00EE0
0E701C783C7FFC1FF0>
15 23 -2 22 20] 79 @dc
[<
0FF8000FF80001C00001C00001C00001C00001C00001C00001C00001C00001C00001C00001
C00001C00001C00001C00001C000E1C380E1C380E1C380E1C380FFFF807FFF80>
17 23 -1 22 20] 84 @dc
[<
FF00FF003800380038003800380038003800387038703FF03FF03870387038003800380738
0738073807FFFFFFFF>
16 23 -2 22 20] 70 @dc
[<
03CE0FFE1C3E181E381E700E700E600EE00EE07FE07FE000E000E000E000600E700E700E38
1E181E1C3E0FFE03C6>
16 23 -1 22 20] 71 @dc
[<
C7E0FFF0F838F01CE00EE00E600E000E001E001C01F80FF03FE07E007000E000E01CE01CE0
1C603C307C1FFC0FCC>
15 23 -2 22 20] 83 @dc
[<
07F00007F00001C00001C00001C00001C00001C00001C00001C00001C00003E00003E00003
60000770000770000E38000E38001E3C001C1C003C1E00380E00FE3F80FE3F80>
17 23 -1 22 20] 89 @dc
[<
00C001C0030006000C001C0038003000700070006000E000E000E000E000E000E000E00060
0070007000300038001C000C000600030001C000C0>
10 29 -6 25 20] 40 @dc
[<
4040C060C060C060C060C060E0E0E0E0E0E0E0E0C060>
11 11 -4 22 20] 34 @dc
[<
03C00FF01C38181C380C700E700E600EE000E000E000E000E000E000E000600E700E700E38
1E181E1C3E0FFE03C6>
15 23 -2 22 20] 67 @dc
[<
FFFFFFFF380738073807380738003800380038003800380038003800380038003800380038
0038003800FF00FF00>
16 23 -2 22 20] 76 @dc
[<
01F00007FC000E0E001C07001C070038038038038038038038038038038038038038038038
0380380380380380380380380380380380380380380380380380FE0FE0FE0FE0>
19 23 0 22 20] 85 @dc
[<
FFFF80FFFF803803803803803803803803803800003800003800003870003870003FF0003F
F000387000387000380000380000380700380700380700380700FFFF00FFFF00>
17 23 -1 22 20] 69 @dc
[<
FE0700FE0F80381DC0381DC0381C80381C00381C00381C00381C00381C003838003FF0003F
F800383C00381C00380E00380E00380E00380E00381C00383C00FFF800FFE000>
18 23 -1 22 20] 82 @dc
[<
FFFEFFFEFFFE>
15 3 -2 -2 20] 95 @dc
[<
FE0FE0FE0FE038038038038038038038038038038038038038E38038E38039F38039B38039
B38039B3803BBB803BBB803B1B803B1B803B1B803B1B803E0F80FE0FE0FE0FE0>
19 23 0 22 20] 77 @dc
[<
FFF8FFFC381E380E38073807380738073807380E381E3FFC3FFC381E380E38073807380738
07380E381EFFFCFFF0>
16 23 -1 22 20] 66 @dc
[<
8000C0006000300018001C000E000600070007000300038003800380038003800380038003
000700070006000E001C00180030006000C0008000>
9 29 -4 25 20] 41 @dc
[<
03E7E00FFFE01C1F001C07001C07001C07001C07001C07001C07001C07001C07001C07001C
07001C0700FC3F00FC3F00>
19 16 0 15 20] 117 @dc
[<
C000E000E00070007000380038001C001C000E000E000700070003800380038001C001C000
E000E00070007000380038001C001C000E000E0006>
15 29 -2 25 20] 47 @dc
[<
FE00FE00380038003800380038003800380038003FF03FFC381E380E380738073807380738
07380E381EFFFCFFF0>
16 23 -1 22 20] 80 @dc
[<
FFFF80FFFF807FFF800000000000000000007FFF80FFFF80FFFF80>
17 9 -1 15 20] 61 @dc
[<
FE3F80FE3F80380E00380E00380E00380E00380E00380E00380E00380E00380E003FFE003F
FE00380E00380E00380E00380E00380E00380E00380E00380E00FE3F80FE3F80>
17 23 -1 22 20] 72 @dc
[<
FF8000FF80001C00001C00001C00001C00001C00001C00001CF8001DFC001F0E001E03001C
03801C01C01C01C01C01C01C01C01C01C01C01C01C03801E03001F0700FDFE00FCF800>
18 24 0 15 20] 112 @dc
[<
70F8F8F87000000000000070F8F8F870>
5 16 -7 15 20] 58 @dc
[<
FFFEFFFEFFFE>
15 3 -2 12 20] 45 @dc
[<
FFE000FFF800383C00381E00380E0038070038070038038038038038038038038038038038
0380380380380380380700380700380700380E00381E00383C00FFF800FFE000>
17 23 -1 22 20] 68 @dc
[<
FE3F80FE3F801C1C001C38001C38001C70001EF0001FE0001FC0001FC0001DE0001CF0001C
78001C3C001DFF801DFF801C00001C00001C00001C00001C0000FC0000FC0000>
17 23 -1 22 20] 107 @dc
[<
007FC0007FC0000E00000E00000E00000E00000E00000E0007CE000FEE001C3E00301E0070
0E00E00E00E00E00E00E00E00E00E00E00E00E00700E00301E001C3E000FFE0003CE00>
18 24 -1 15 20] 113 @dc
[<
FE3F80FE3F80380E003C1E001C1C001C1C001FFC001FFC000E38000E38000E38000E38000E
380006300007700007700007700007700003600003600003E00003E00001C000>
17 23 -1 22 20] 65 @dc
[<
07C00FE01C7038383838701C701CE00EE00EE00EE00EE00EE00EE00EE00EE00E701C701C30
1838381C700FE007C0>
15 23 -2 22 20] 48 @dc
[<
001E001C003C003800781FF07FFC78FC71DCE1CEE38EE00EE00EE00EE00EE00EE00EE00EE0
0EE00EE00EE00EE00EE00E701C783C7FFC1FF0>
15 28 -2 22 20] 81 @dc
[<
07F0001FFC003C1E00700700E00380E00380E00380E00380700F003FFE001FFC003FF80070
000070000037C0003FF000383800301800701C00701C00701C00301800383B801FFF8007CF
00>
17 25 -1 15 20] 103 @dc
[<
0E78000E78001E7C001A6C001A6C001B6C001B6C0019CC0039CE0039CE00380E00380E0038
0E00380E00FF7F80FF7F80>
17 16 -1 15 20] 119 @dc
[<
FE3FFE3F381C381C38383838387038703CE03CE03FE03FC03FC03B8039C039E038E0387038
783838381CFE7FFE7F>
16 23 -1 22 20] 75 @dc
[<
FFFFFFFF700738071C070E000700038001C000E000707038701C700E7FFF3FFF>
16 16 -1 15 20] 122 @dc
[<
80C060303018181878F8F060>
5 12 -8 22 20] 39 @dc
[<
FFE0FFE0E000E000E000E000E000E000E000E000E000E000E000E000E000E000E000E000E0
00E000E000E000E000E000E000E000E000FFE0FFE0>
11 29 -7 25 20] 91 @dc
[<
0FC03FF07838701CE00EE00E400E000E000E001C003807F007E000700038001C001C201C70
1C701C38381FF00FC0>
15 23 -2 22 20] 51 @dc
[<
04000E000E000E000E000E000E00070007000700070003800380018001C000C000E0007000
30E038E01CFFFEFFFEE000>
15 24 -2 23 20] 55 @dc
[<
0FC03FF07878601CE01CE00E400E000E000E000C201C78387FF077C0700070007000700070
00700070007FFC3FFC>
15 23 -2 22 20] 53 @dc
[<
C0E030180C7CFCFCF870>
6 10 -7 4 20] 44 @dc
[<
FFE0FFE000E000E000E000E000E000E000E000E000E000E000E000E000E000E000E000E000
E000E000E000E000E000E000E000E000E0FFE0FFE0>
11 29 -1 25 20] 93 @dc
[<
3F007F80E0C040E00070007000700070007000700070007000700070007000700070007000
700070007000701FF01FF00000000000000000006000F000F00060>
12 32 -2 23 20] 106 @dc
[<
1F007FC0F0E0E070E070007000700070007000700070007000700070007000700070007000
700070007007FC07FC>
14 23 -3 22 20] 74 @dc
[<
1E3C001E3C001E3C001A2C001B6C001B6C003B6E003B6E003B6E003B6E003B6E003BEE003B
EE0031C600300600700700700700700700700700700700700700FC1F80FC1F80>
17 23 -1 22 20] 87 @dc
[<
01F007F80E1E180638F071F8739C739CE70EE70EE70EE70EE70EE70EE70E739E739E71FC38
FC181C0E3807F001E0>
15 23 -2 22 20] 64 @dc
[<
80E070301878F8F8F06000000000000070F8F8F870>
5 21 -7 15 20] 59 @dc
[<
FE3F80FE3F801C1C000E38000E780007700003E00003C00001C00003E00007E0000770000E
78001E38007E3F007E3F00>
17 16 -1 15 20] 120 @dc
36 @eop0
0 0 36 @bop1 262 353 a @F10 @sf(It)18 b(is)h(also)f(advisa)o(ble)o 18 x
(to)h(clear)f(old)g(files)g(from)g(the)h(direc)o(to)o(ry)f(on)h(a)g(daily)o
-1354 45 a(basi)o(s.)-119 92 y($)g(If)g(.NOT.)o 18 x(F$GetS)o(YI\()o("CL)o
(US)o(TER)o(_M)o(EM)p(B)o(ER)o("\))f(Then)g(GoTo)g(Not_Cl)o(us)o(ter)o -1158
45 a($)h(Say)f("This)g(syste)o(m)g(is)h(a)g(cluste)o(r)f(member)o(.)-766
46 y($)h(Read/)o(Pro)o(m=)o("Ha)o(s)f(this)g(proced)o(ur)o(e)g(alread)o(y)g
(been)g(run)h(on)f(another)o 18 x(cluste)o(r)g(member)o(:)g("-)-1491 46 y
(SYS$I)o(NPU)o(T)g(Clust)o(er)-374 45 y($)h(If)g(Clust)o(er)o 18 x(Then)g
(GoTo)f(No_Cr)o(ea)o(te)-629 46 y($Not)o(_Cl)o(ust)o(er)o(:)-256 46 y($)h
(Read/)o(End)o(=C)o(lea)o(nu)o(p)f(-)-373 45 y(/Promp)o(t=")o(Di)o(sk)g
(quota)o 18 x(for)h(FAL)f(accoun)o(t)g(\(0)h(if)g(quota)o(s)f(not)h(enabl)o
(ed)o(\):)f(")h(-)-1275 46 y(SYS$C)o(OMM)o(AN)o(D)f(Quota)-374 46 y($)h
(If)g(F$Typ)o(e\()o(Quo)o(ta)o(\))f(.EQS.)g("INTE)o(GER)o(")g(Then)g(GoTo)g
(Set_Qu)o(ota)o -1060 45 a($)h(Say)f("Diskq)o(uot)o(a)g(must)g(be)h(an)g
(integ)o(er)o(")-707 46 y($)g(GoTo)f(FAL_P)o(ass)o(wo)o(rd_)o(OK)-433 46 y
($Set)o(_Qu)o(ota)o(:)-217 45 y($)h(Say)f("Setti)o(ng)g(up)h(new)f(FAL)g
(account)o(.")o -687 46 a($)h(Set)f(Defaul)o(t)g(SYS$SY)o(STE)o(M)-472 46 y
($)h(Set)f(NoOn)-197 45 y($)h(UAF)f(:=)h("$Auth)o(or)o(ize)o(")-413 46 y
($)g(UAF)f(Copy)g(DECNET)o 19 x(FAL/P)o(as)o(swo)o(rd)o(='F)o(AL)o(_Pa)o
(s)p(sw)o(or)o(d'/)o(UI)o(C=[)o(375)o(,3)o(75])o(/)p(D)o(ire)o(ct)o(ory)o
(=[F)o(AL)o(])-1472 46 y($)h(Creat)o(e/D)o(ir)o(ect)o(or)o(y)f(SYS$SY)o
(SRO)o(OT)o(:[F)o(AL)o(]/O)o(wn)p(e)o(r=)o([FA)o(L])o -942 45 a($No_)o
(Cre)o(ate)o(:)-217 46 y($)h(NCP)f(:=)h("$NCP")o -295 46 a($)g(NCP)f
(Define)o 18 x(Object)g(FAL)g(USER)g(FAL)h(Passw)o(ord)o 18 x('FAL_P)o
(ass)o(wor)o(d')o -1099 45 a($)g(NCP)f(Set)h(Objec)o(t)f(FAL)g(USER)g(FAL)h
(Passw)o(ord)o 18 x('FAL_Pa)o(ss)o(wor)o(d')-1041 46 y($)g(If)g(\(Quot)o
(a)f(.eq.)g(0\))h(.OR.)f(Clust)o(er)g(Then)g(GoTo)g(NO_QU)o(OTA)o -1001
46 a($)h(Say)f("Enter)o(ing)o 18 x(disk)g(quota)g(for)h(FAL)f(accoun)o(t.)o
-844 45 a($)h(Set)f(Defaul)o(t)g(SYS$SY)o(STE)o(M)-472 46 y($)h(PID)f(=)h
(F$GetJP)o(I\()o("",)o("PI)o(D")o(\))-511 46 y($)g(Open/)o(Wri)o(te)o 18 x
(Quota)f(SET_QU)o(OTA)o('P)o(ID')o(.C)o(OM)-727 45 y($)h(Write)o 18 x
(Quota)f("$)h(Run)f(SYS$SYS)o(TE)o(M:D)o(IS)o(KQU)o(OTA)o(")-825 46 y($)h
(Write)o 18 x(Quota)f("Add)g(FAL/Pe)o(rm=)o('')o(Quo)o(ta)o('")-727 46 y
($)h(Close)o 18 x(Quota)-256 45 y($)g(@SET_)o(QUO)o(TA)o('PI)o(D')o -334
46 a($)g(Delet)o(e)f(SET_QU)o(OT)o(A'P)o(ID')o(.C)o(OM;)o -550 46 a($No_)o
(Quo)o(ta:)o -197 45 a($)h(Say)f("Reset)o(tin)o(g)g(defaul)o(t)g(DECNE)o
(T)g(accoun)o(t)g(passwo)o(rd)o(")-962 46 y($)h(NCP)f(Define)o 18 x
(Executo)o(r)g(Nonpri)o(v)g(Passw)o(ord)o 18 x('DN_Pas)o(sw)o(ord)o(')-1021
46 y($)h(NCP)f(Set)h(Execu)o(to)o(r)f(Nonpri)o(v)g(Passwo)o(rd)o 19 x
('DN_P)o(as)o(swo)o(rd)o(')-962 45 y($)h(UAF)f(Modify)o 18 x(DECNET/)o
(Pas)o(sw)o(ord)o(=')o(DN_)o(P)p(a)o(ssw)o(ord)o(')-825 46 y($Cle)o(anu)o
(p:)-178 46 y($)h(Set)f(Defaul)o(t)g('Curre)o(nt_)o(De)o(fau)o(lt)o(')-609
45 y($)h(Set)f(Termin)o(al/)o(Ec)o(ho)-374 46 y($)h(Exit)576 428 y @F9 @sf
(36)-999 b
36 @eop1
35 @bop0
@F1 @sf
[<
000001C0000000000003E0000000000003E0000000000007F0000000000007F00000000000
0FF800000000000FF800000000000FF800000000001FFC00000000001FFC00000000003FFE
00000000003FCE00000000007FCF00000000007F870000000000FF878000000000FF038000
000000FF038000000001FF01C000000001FE01C000000003FE01E000000003FC00E0000000
07FC00F000000007F8007000000007F800700000000FF000380000000FF000380000001FF0
001C0000001FE0001C0000003FE0001E0000003FC0000E0000007FC0000F0000007F800007
0000007F800007000000FF000003800000FF000003800001FF000003C00001FE000001C000
03FE000001E000FFFFF0003FFF80FFFFF0003FFF80FFFFF0003FFF80>
49 41 -1 40 52] 86 @dc
[<
FFFE007801FFFFC0FFFE007801FFFFC0FFFE00FC01FFFFC0038000FC0007F000038000FC00
07F000038001FE0007F000038001FE0007F000038003FF0007F000038003FF0007F0000380
07F38007F000038007F38007F00003800FE1C007F00003800FE1C007F00003800FE1C007F0
0003801FC0E007F00003801FC0E007F00003803F807007F00003803F807007F00003807F00
3807F00003807F003807F0000380FF003807F0000380FE001C07F0000380FE001C07F00003
81FC000E07F0000381FC000E07F0000383F8000707F0000383F8000707F0000387F0000387
F0000387F0000387F0000387F0000387F000038FE00001C7F000038FE00001C7F000039FC0
0000E7F000039FC00000E7F00003BF80000077F00003BF80000077F00003FF0000003FF000
03FF0000003FF000FFFF0000003FFFC0FFFE0000001FFFC0FFFE0000001FFFC0>
58 41 -3 40 65] 77 @dc
[<
FFFE000000FFFE000000FFFE0000000FE00000000FE00000000FE00000000FE00000000FE0
0000000FE00000000FE00000000FE00000000FE00000000FE1FC00000FE7FF80000FFE0FE0
000FF803F0000FF001F8000FE001FC000FE000FE000FE000FF000FE000FF000FE0007F000F
E0007F800FE0007F800FE0007F800FE0007F800FE0007F800FE0007F800FE0007F800FE000
7F000FE0007F000FE000FF000FE000FE000FE000FC000FF001F8000FF803F000FFFE07E000
FFE7FF8000FFE1FE0000>
33 39 -2 26 38] 112 @dc
@F9 @sf
[<
FFFFC0000F0070000F001C000F000E000F0007000F0007800F0003800F0003C00F0001C00F
0001C00F0001E00F0001E00F0001E00F0001E00F0001E00F0001E00F0001E00F0001E00F00
01C00F0001C00F0003C00F0003800F0007000F0007000F000E000F003C000F00F000FFFFC0
00>
27 28 -2 27 32] 68 @dc
@F10 @sf
[<
60F0F0600000000060F0F0F0F0F0F0F0F0F0F0F0F0F060>
4 23 -8 22 20] 33 @dc
[<
01C00003E00003E0000360000360000770000770000770000630000E38000E38000E38000E
38001C1C001C1C001C1C001C1C001C1C00380E00380E00380E00FC1F80FC1F80>
17 23 -1 22 20] 86 @dc
[<
07C01FF03838701CF01EE00EE00EE00EE00E701C38381FF003801EF0701CE00EE00EE00EE0
0E701C783C3FF80FE0>
15 23 -2 22 20] 56 @dc
35 @eop0
0 0 35 @bop1 262 307 a @F1 @sf(B)68 b(VMS)23 b(Script)-476 91 y @F9 @sf
(This)10 b(script)i(is)f(courtesy)h(of)e(Kevin)i(Ob)q(erman)f(of)f(La)o
(wrence)j(Liv)o(ermore)d(National)g(Labs.)-1432 50 y(It)18 b(is)h(used)h
(on)f(DEC)f(VMS)h(systems)h(to)f(close)g(a)g(n)o(um)o(b)q(er)g(of)f(the)i
(standard)f(created)-1430 50 y(b)o(y)d(the)i(normal)e(installation)g(of)g
(DECNET.)h(Rather)h(than)f(t)o(yping)f(this)h(in)g(b)o(y)g(hand,)-1432 50 y
(please)c(request)h(one)f(b)o(y)g(electronic)h(mail.)o 17 x(This)e(DCL)h
(script)g(is)g(pro)o(vided)g(for)f(referenc)q(e)-1430 49 y(purp)q(oses)j
(only)e(and)h(is)f(not)h(guaran)o(teed)h(or)f(w)o(arran)o(ted)g(in)f(an)o
(y)h(w)o(a)o(y)m(.)-1127 88 y @F10 @sf($)19 b(Type)f(SYS$I)o(NPU)o(T)-315
91 y(This)o 19 x(proce)o(du)o(re)g(chang)o(es)g(the)g(passwo)o(rd)o 19 x
(for)g(the)g(default)o 18 x(DECnet)g(accou)o(nt)o 19 x(and)-1374 45 y
(sets)o 19 x(up)g(a)i(new)e(accoun)o(t)g(for)g(FAL)h(activ)o(ity)o(.)f(It)h
(preve)o(nts)o 18 x(unautho)o(ri)o(zed)o 18 x(users)-1374 46 y(from)o 19 x
(makin)o(g)f(use)g(of)h(the)g(defau)o(lt)o 19 x(DECn)o(et)f(accou)o(nt)g
(for)g(any)h(purpo)o(se)o 19 x(exce)o(pt)-1335 46 y(file)o 19 x(trans)o
(fe)o(r.)-276 91 y(This)o 19 x(proce)o(du)o(re)f(assum)o(es)g(a)h(defau)o
(lt)f(DECne)o(t)g(accoun)o(t)g(named)g(DECNE)o(T)g(using)o 19 x(a)-1334
46 y(dire)o(cto)o(ry)g(on)g(SYS$SYS)o(ROO)o(T.)o 18 x(If)h(this)f(is)h
(not)g(the)f(case)g(on)h(this)f(system)o(,)g(do)-1334 45 y(not)g(procee)o
(d!)o 38 x(It)h(will)f(use)g(UIC)h([375,)o(375)o(].)f(If)g(this)h(UIC)f
(is)h(alrea)o(dy)f(in)-1295 46 y(use,)o 19 x(do)g(not)h(conti)o(nue)o(.)
-413 91 y($)g(Read/)o(End)o(=C)o(lea)o(nu)o(p/P)o(rom)o(pt)o(="C)o(on)o
(tin)o(ue)o 19 x([N]:)f(")h(SYS$C)o(OMM)o(AND)o 18 x(OK)-1118 46 y($)g(If)g
(.NOT.)o 18 x(OK)g(Then)f(Exit)-452 46 y($)h(Say)f(:=)h("Write)o 18 x
(SYS$OUT)o(PU)o(T")-531 45 y($)g(Curre)o(nt_)o(De)o(fau)o(lt)o 19 x(=)g
(F$Env)o(iro)o(nm)o(ent)o(\(")o(DEF)o(AUL)o(T")o(\))-864 46 y($)g(Has_P)o
(riv)o(s)f(=)h(F$Priv)o(\("C)o(MK)o(RNL)o(,O)o(PER)o(,S)o(YSP)o(RV")o(\))
-825 46 y($)g(If)g(Has_P)o(ri)o(vs)f(Then)g(GoTo)g(Privs)o(_OK)o -648 45 a
($)h(Say)f("This)g(proce)o(dur)o(e)g(requir)o(es)o 19 x(CMKR)o(NL,)o 18 x
(OPER,)g(and)h(SYSPR)o(V.)o(")-1119 46 y($)g(Exit)-119 46 y($Pri)o(vs_)o
(OK:)o -197 45 a($)g(On)g(Contr)o(ol)o(_Y)f(Then)g(GoTo)g(Clean)o(up)-629
46 y($)h(On)g(Error)o 18 x(Then)f(GoTo)g(Cleanup)o -550 46 a($)h(Set)f
(Termin)o(al/)o(No)o(Ech)o(o)-413 45 y($)h(Read/)o(End)o(=C)o(lea)o(nu)o
(p/P)o(rom)o(pt)o(="P)o(le)o(ase)o 18 x(enter)f(new)g(default)o 18 x
(DECnet)g(passw)o(or)o(d:)g(")h(-)-1393 46 y(SYS$Co)o(mma)o(nd)o 18 x
(DN_Pass)o(wor)o(d)-472 46 y($)g(Say)f(")h(")-176 45 y($)g(If)g(F$Len)o
(gt)o(h\(D)o(N_)o(Pas)o(swo)o(rd)o(\))f(.GT.)g(7)h(Then)f(GoTo)g(DN_Pass)o
(wor)o(d_)o(OK)-1139 46 y($)h(Say)f("Minim)o(um)g(passw)o(ord)o 18 x
(length)o 19 x(is)g(8)i(chara)o(ct)o(ers)o(")-923 46 y($)f(GoTo)f(Privs)o
(_OK)o -295 45 a($DN_)o(Pas)o(swo)o(rd)o(_OK)o(:)-315 46 y($)h(Read/)o
(End)o(=C)o(lea)o(nu)o(p/P)o(rom)o(pt)o(="E)o(nt)o(er)f(new)g(FAL)h(passw)o
(or)o(d:)f(")h(SYS$CO)o(MM)o(AND)o 18 x(FAL_Pas)o(sw)o(ord)o -1511 46 a($)g
(Say)f(")h(")-176 45 y($)g(If)g(F$Len)o(gt)o(h\(F)o(AL)o(_Pa)o(ssw)o(or)o
(d)p(\))f(.GT.)g(7)h(Then)f(GoTo)g(FAL_Pa)o(ssw)o(or)o(d_O)o(K)-1178 46 y
($)h(Say)f("Minim)o(um)g(passw)o(ord)o 18 x(length)o 19 x(is)g(8)i(chara)o
(ct)o(ers)o(")-923 46 y($)f(GoTo)f(DN_Pa)o(ssw)o(or)o(d_O)o(K)-413 45 y
($FAL)o(_Pa)o(ssw)o(or)o(d_O)o(K:)o -334 46 a($)h(Set)f(Termin)o(al/)o(Ec)o
(ho)-374 46 y($)h(Type)f(SYS$I)o(NPU)o(T)-315 91 y(The)g(FAL)g(account)o
18 x(require)o(s)g(a)h(disk)f(quota.)o 18 x(This)g(quota)g(should)o 18 x
(be)h(large)-1276 46 y(enou)o(gh)f(to)h(accom)o(od)o(ate)o 18 x(the)g(the)f
(files)g(typica)o(ll)o(y)g(loaded)o 18 x(into)g(this)h(acco)o(unt)o(.)-1374
45 y(Shou)o(ld)f(the)g(qouta)g(be)h(exhau)o(ste)o(d,)o 19 x(the)f(system)o
18 x(will)g(fail)g(to)h(perfor)o(m)f(defaul)o(t)-1374 46 y(DECn)o(et)g
(file)g(trans)o(fer)o(s.)262 142 y @F9 @sf(35)-999 b
35 @eop1
34 @bop0
@F9 @sf
[<
FFF0000F00000F00000F00000F00000F00000F00000F00000F00000F00000F00000F00000F
00000FFF800F00E00F00780F003C0F001C0F001E0F001E0F001E0F001E0F001E0F001C0F00
3C0F00780F00E0FFFF80>
23 28 -2 27 28] 80 @dc
[<
1F0021C040E0F0F0F878F878F8787078007800780078007800780078007800780078007800
780078007800780078007800780078007800F81FFF>
16 29 -1 27 21] 74 @dc
34 @eop0
0 0 34 @bop1 312 307 a @F9 @sf(1.)20 b(Where)e(practical,)e(eac)o(h)h
(user)h(should)f(ha)o(v)o(e)f(his)g(o)o(wn)h(system)g(disks)g(and)f(hence)
-1327 50 y(b)q(e)f(partially)d(insulated)i(from)f(p)q(oten)o(tial)g
(mistak)o(es.)-895 83 y(2.)20 b(When)c(p)q(eople)h(are)f(sharing)g(disks)g
(ha)o(v)o(e)f(an)h(explicit)g(c)o(hec)o(k)g(out)g(p)q(olicy)f(logging)-1330
50 y(the)d(users)h(of)e(eac)o(h)h(disk.)18 b(Be)12 b(sure)h(to)e(set)h
(the)h(write-protect)g(them)e(and)h(teac)o(h)g(the)-1328 50 y(users)g(ho)o
(w)d(to)h(write)h(protect)g(there)g(o)o(wn)f(system)h(disks.)17 b(\(Most)
10 b(PC)g(programs)g(are)-1328 49 y(sold)h(on)f(write-protected)q 12 x
(disks,)h(this)f(is)h(not)g(true)g(of)f(most)h(Macin)o(tosh)f(programs.)
-1382 83 y(3.)20 b(Keep)13 b(a)d(bac)o(k)h(up)h(cop)o(y)f(of)f(all)g
(system)i(programs)f(and)g(system)g(programs)g(to)g(allo)o(w)-1330 50 y
(for)j(easy)g(restoration)g(of)g(the)g(system.)-672 83 y(4.)20 b(W)m(rite)
13 b(lo)q(c)o(k)g(originals)f(and)h(k)o(eep)h(them)g(under)g(lo)q(c)o(k)f
(and)g(k)o(ey)g(for)g(emergency)i(use)-1328 50 y(only)m(.)-140 83 y(5.)20 b
(Ha)o(v)o(e)13 b(an)g(explicit)g(p)q(olicy)f(and)h(teac)o(h)h(users)h(ab)q
(out)e(soft)o(w)o(are)g(theft)h(and)f(soft)o(w)o(are)-1329 50 y(ethics.)
-168 83 y(6.)20 b(T)m(eac)o(h)13 b(users)h(to)f(bac)o(k)g(up)g(their)g
(data.)18 b(Just)13 b(as)g(with)g(large)f(computers,)i(the)f(only)-1329
50 y(real)h(defense)h(from)f(disaster)g(is)g(redundancy)m(.)-778 83 y(Ev)o
(en)e(when)h(the)f(computer)h(cen)o(ter)h(is)e(not)f(pro)o(viding)g(the)i
(mac)o(hines)f(themselv)o(es,)h(it)-1432 50 y(should)i(generally)f(help)i
(to)f(teac)o(h)h(users)h(ab)q(out)e(bac)o(kups,)g(write)h(protection,)g
(soft)o(w)o(are)-1432 49 y(ethics)e(and)f(related)i(issues.)k(Most)14 b
(PC)f(users)i(do)f(not)f(realize)h(that)g(they)g(are)g(their)g(o)o(wn)-1432
50 y(system)i(managers)f(and)h(m)o(ust)f(tak)o(e)h(the)g(resp)q(onsibilit)o
(y)f(of)g(care)i(for)e(their)h(systems)h(or)-1432 50 y(risk)c(the)i
(consequence)q(s.)297 1387 y(34)-999 b
34 @eop1
33 @bop0
@F5 @sf
[<
0001C000000001C000000003E000000003E000000007F000000007F000000007F00000000F
D80000000FD80000001FCC0000001F8C0000003F8E0000003F060000007F070000007E0300
00007E03000000FC01800000FC01800001FC00C00001F800C00003F800E00003F000600007
F000700007E000300007E00030000FC0001800FFFC01FF80FFFC01FF80>
33 28 -1 27 36] 86 @dc
/@F4 @newfont
@F4 @sf
[<
03F00FF81FFC3E0E78077007F000E000E000E000E000E0007000780C3C1E1FFE0FFC03F8>
16 18 -3 17 22] 99 @dc
[<
03E0000FF8001FFC003C1E00780F00700700F00780E00380E00380E00380E00380E0038070
0700780F003C1E001FFC000FF80003E000>
17 18 -2 17 22] 111 @dc
[<
FE3C78FE7CF8FE7CF83870E03870E03870E03870E03870E03870E03870E03870E03870E038
70E03C78E03C78E0FFFFE0FFEFC0F9C380>
21 18 0 17 22] 109 @dc
[<
0F83E03FE7E07FFFE0783E00E00E00E00E00E00E00700E003E0E001FFE0003FE00000E0000
0E00300E00783C007FF8003FF0001FE000>
19 18 -2 17 22] 97 @dc
[<
7FC7F0FFE7F87FC7F00E03800E03800E03800E03800E03800E03800E03800E03800E03800E
03800F03800F87807FFF00FEFE007E3C00>
21 18 0 17 22] 110 @dc
[<
07C7E00FE7F01FFFE03C1F00700F00700F00E00700E00700E00700E00700E00700E0070070
0700780F003C1F001FFF000FF70003C700000700000700000700000700003F00007F00003F
00>
20 25 -1 24 22] 100 @dc
[<
70F8F8F870>
5 5 -8 4 22] 46 @dc
@F4 @sf
[<
03F00FFC1FFE3C0F78077007E000E000FFFFFFFFFFFFE0077007780E3C1E1FFC0FF803E0>
16 18 -3 17 22] 101 @dc
[<
7F1FC0FF3FE07F1FC00E0E00071C00073C0003B80001F00001E00000E00001F00003F00003
B800073C000F1C007F1FC07F3FC07F1FC0>
19 18 -1 17 22] 120 @dc
@F9 @sf
[<
07C03E001830E1803009C04070078040E0070020E00F0020E01C8000E03C4000E038400060
7020006070200030E0100010E0100009C0080005C00400038004000380060003800F0003C0
3FE00740000007200000071000000710000007080000070800000708000007080000030800
00030800000190000000E00000>
27 31 -2 29 32] 38 @dc
@F4 @sf
[<
00E00001F00001F00003B80003B80003B800071C00071C00071C00071C000E0E000E0E000E
0E001E0F001C07007F1FC0FF1FE07F1FC0>
19 18 -1 17 22] 118 @dc
[<
7FFFFFFF7FFF01C001C001C001C001C001C001C001C001C001C001C001C07FC07FC07FC000
00000000000000018003C003C00180>
16 26 -3 25 22] 105 @dc
[<
FFFC00FFFC00FFFC0007000007000007000007000007000007000007000007000007800007
800007C00007F040FF7FE0FF3FE0FF0FC0>
19 18 -1 17 22] 114 @dc
[<
03E3F007FBF80FFFF00E0F800E03800E03800E03800E03800E03800E03800E03800E03800E
03800E03800E03807E1F80FE3F807E1F80>
21 18 0 17 22] 117 @dc
[<
C7E0FFF8FFFCF81EF00EE00E600E003C07F81FF07F807000E01CE01CF03C7FFC3FFC0FEC>
15 18 -3 17 22] 115 @dc
[<
FFFF80FFFF80FFFF80>
17 3 -2 13 22] 45 @dc
[<
FFFF80FFFF80FFFF8001C00001C00001C00001C00001C00001C00001C00001C00001C00001
C00001C00001C00001C00001C00001C00001C00001C00001C00001C000FFC000FFC000FFC0
00>
17 25 -2 24 22] 108 @dc
@F4 @sf
[<
00F80001FC0003FE0007870007038007038007038007010007000007000007000007000007
0000070000070000FFFF00FFFF007FFF00070000070000070000070000030000>
17 23 -1 22 22] 116 @dc
@F4 @sf
[<
7FC000FFE0007FC0000E00000E00000E00000E00000E00000E00000E3C000EFF000FFF800F
83C00F01E00E00E00E00700E00700E00700E00700E00700E00700E00E00F00E00F83C07FFF
80FEFF007E3E00>
20 27 0 17 22] 112 @dc
@F5 @sf
[<
FFC00030FFC000700C0000F00C0000F00C0001F00C0003F00C0007F00C000FF00C001FF00C
001FB00C003F300C007F300C00FE300C01FC300C01F8300C03F0300C07F0300C0FE0300C1F
C0300C1F80300C3F00300C7E00300CFE00300DFC00300FF800300FF00030FFE003FFFFE003
FF>
32 28 -2 27 37] 78 @dc
33 @eop0
0 0 33 @bop1 365 307 a @F9 @sf(migh)o(t)14 b(include)i(destruction)g(of)f
(a)g(system)h(program,)e(in)o(ten)o(tional)g(or)i(acciden)o(tal)-1329 50 y
(mo)q(di\014cation)d(of)g(a)h(system)h(program)e(or)h(en)o(try)g(of)f(a)h
(virus.)-967 66 y(T)m(o)i(com)o(bat)g(this,)g(systematic)h(c)o(hec)o(king)g
(or)f(reinstallation)f(of)h(soft)o(w)o(are)g(from)g(a)-1329 50 y(kno)o(wn)
10 b(protected)i(source)f(is)f(recommended.)18 b(In)10 b(most)g(shared)h
(facilities,)e(refresh-)-1327 50 y(ing)k(the)i(net)o(w)o(ork,)f(hard-disk)f
(or)h(\015opp)o(y-library)f(w)o(eekly)h(should)f(b)q(e)i(considered.)-1328
50 y(Shared)h(\015oppies)g(should)f(b)q(e)g(write)h(protected)h(and)e(the)h
(original)d(copies)j(of)f(pro-)-1329 50 y(grams)k(should)g(b)q(e)h(k)o
(ept)f(under)h(lo)q(c)o(k)f(and)g(k)o(ey)g(and)g(used)h(only)e(to)h(mak)o
(e)g(new)-1328 49 y(copies.)-120 67 y(T)m(rusted)c(serv)o(er)q 15 x(the)g
(pro)o(vide)g(read)f(only)g(access)i(to)e(the)h(system)h(\014les)e(ha)o(v)o
(e)g(b)q(een)-1327 50 y(succe)q(ssfully)19 b(used)g(in)f(some)h(univ)o
(ersities.)32 b(It)18 b(is)g(absolute)h(critical)f(that)g(these)-1327 50 y
(mac)o(hines)c(b)q(e)h(used)g(only)e(as)h(serv)o(ers.)-709 83 y @F5 @sf
(Viruses.)20 b @F9 @sf(A)12 b(n)o(um)o(b)q(er)h(of)f(computer)i(viruses)g
(ha)o(v)o(e)e(b)q(een)i(found)e(for)h(micro-computers.)-1329 49 y(Man)o(y)k
(exp)q(erts)q 19 x(consider)h(this)g(problem)f(to)g(b)q(e)h(practically)f
(solv)o(ed)h(for)f(Macin-)-1329 50 y(toshes)e(an)f(so)q(on)g(to)g(b)q(e)g
(solv)o(ed)g(for)f(IBM-st)o(yle)i(PC's.)-866 67 y(Tw)o(o)i(basic)h(t)o(yp)q
(es)g(of)e(an)o(ti-viral)g(soft)o(w)o(are)h(are)h(generally)f(a)o(v)n(ail)o
(able.)27 b(The)18 b(\014rst)-1328 49 y(t)o(yp)q(e)13 b(is)f(installed)g
(in)o(to)g(the)g(op)q(erating)h(and)f(w)o(atc)o(hes)h(for)f(virus's)g
(trying)g(to)g(infect)-1328 50 y(a)k(mac)o(hine.)24 b(Examples)15 b(of)h
(this)f(on)h(the)h(Mac)f(include)g(Seman)o(tic's)f(SAM)h(\(P)o(art)-1328
50 y(1\),)e(Don)f(Bro)o(wn's)h(v)n(accine)g(and)g(Chris)g(Johnson's)g
(Gate)g(Keep)q(er.)-1078 66 y(The)f(second)g(t)o(yp)q(e)f(of)g(an)o
(ti-viral)o 11 x(soft)o(w)o(are)g(scans)h(the)g(disk)e(to)h(detect)q 13 x
(and)g(correct)-1327 50 y(infected)h(programs.)k(On)11 b(the)h(Mac,)g(SAM)g
(\(P)o(art)g(2\),)f(H.)g(G.)g(C.)g(Soft)o(w)o(are's)g(Virex,)-1329 50 y
(and)j(John)g(Norstab's)g(Disin\014nct)g(are)g(commonly)f(used)i(disk)e
(scanners)q(.)-1172 66 y(On)19 b(the)f(PC)g(t)o(yp)q(e)h(of)e(mac)o(hines)h
(w)o(e)g(\014nd)g(three)i(t)o(yp)q(es)e(of)g(virus.)30 b(The)18 b(\014rst)h
(of)-1329 50 y(these)14 b(is)d(a)h(b)q(o)q(ot)g(sector)h(virus)f(that)g
(alters)g(the)h(mac)o(hine)e(language)g(start)i(up)f(co)q(de)-1328 50 y
(found)17 b(on)g(the)g(disk)o(ette.)29 b(The)17 b(second)i(infects)e(the)h
@F4 @sf(command.co)o(m)e @F9 @sf(startup)i(\014le)-1329 50 y(and)c(the)g
(third)g(alters)h(the)f @F4 @sf(exe)f @F9 @sf(\(mac)o(hine)h(language)f
(executable)i(\014les\).)-1173 66 y(Flu)d(Shot)g(Plus)h(b)o(y)f(Ross)g
(Green)o(b)q(erg)i(is)e(an)g(example)g(of)f(a)h(program)g(to)g(deal)g
(with)-1329 50 y @F4 @sf(command.com)f @F9 @sf(&)i(some)g @F4 @sf(exe)f
@F9 @sf(virus.)18 b(No)o(virus)12 b(and)h(co)q(op)q(erativ)o(ely)g(built)f
(b)o(y)h(Y)m(ale,)-1330 50 y(Alemeda)h(and)g(Merit)g(is)g(one)g(of)f(the)i
(b)q(o)q(ot)f(trac)o(k)g(repair)g(systems.)-1078 66 y(There)k(are)f(a)g(n)o
(um)o(b)q(er)g(of)f(electronic)h(discussion)h(groups)e(that)h(deal)g(with)f
(com-)-1329 50 y(puter)j(virus.)31 b(On)18 b(BITNET)h(\(and)f(forw)o
(arded)g(to)g(other)h(net)o(w)o(orks\),)g @F4 @sf(virus-l)-1330 50 y @F9 @sf
(supp)q(orts)14 b(discussion)g(ab)q(out)f(PC)g(and)g(Mac)g(virus,)f(while)h
@F4 @sf(valert)f @F9 @sf(is)g(used)i(to)f(an-)-1329 50 y(nounce)f(the)g
(disco)o(v)o(ery)g(of)f(new)g(ones.)18 b(Compuserv)o(e's)12 b @F4 @sf
(macpro)e @F9 @sf(serv)o(es)j(as)e(a)g(forum)-1329 50 y(to)j(discuss)h
(Macin)o(tosh)f(viruses.)-629 83 y @F5 @sf(Net)o(w)o(ork.)20 b @F9 @sf
(The)14 b(third)g(is)f(issue)i(is)e(the)i(placemen)o(t)f(of)f(single)g
(user)i(computers)g(on)e(net-)-1328 49 y(w)o(orks.)18 b(Since)12 b(there)i
(is)e(little)f(or)i(no)e(authen)o(tication)h(on)g(\(or)g(of)s(\))g(these)i
(mac)o(hines,)-1329 50 y(care)j(m)o(ust)e(b)q(e)i(tak)o(en)e(to)h(not)f
(place)h(sensitiv)o(e)g(\014les)g(up)q(on)g(them)g(in)f(suc)o(h)h(a)g
(con-)-1329 50 y(\014guration.)-291 83 y @F5 @sf(Reliabilit)o(y)l(.)21 b
@F9 @sf(Finally)8 b(there)k(is)f(a)f(reliabili)o(t)o(y)f(issue.)18 b(Most)
10 b(single)h(user)g(computers)h(w)o(ere)-1328 50 y(nev)o(er)j(designed)g
(for)f(life)f(and)h(time)g(critical)g(applications.)k(Before)d(using)f
(suc)o(h)h(a)-1329 50 y(computer)g(in)e(suc)o(h)i(an)f(application,)o 13 x
(exp)q(ert)h(advise)f(should)f(b)q(e)i(sough)o(t.)-1226 91 y(In)d(the)i
(use)f(of)f(single)g(user)i(computers,)g(there)f(are)g(some)g(basic)g
(issues)h(that)e(need)i(b)q(e)-1431 50 y(considered)h(and)f(some)g(simple)f
(advice)h(that)g(should)f(b)q(e)i(giv)o(en.)-968 50 y(In)f(the)g(advice)g
(column,)f(there)i(are)f(a)g(few)g(basic)g(p)q(oin)o(ts.)-287 133 y(33)-999 b
33 @eop1
32 @bop0
@F1 @sf
[<
00FF800003FFF0000FFFF8001F01FE003C007F0078003F8078003F80FC001FC0FE001FC0FE
001FE0FE001FE0FE001FE07C001FE018001FE000001FE000001FE000001FC000001FC00000
1F800C003F000E003E000F80FC000FFFF8000E7FC0000E0000000E0000000E0000000E0000
000E0000000E0000000FFE00000FFFC0000FFFE0000FFFF0000FFFF8000FFFFC000FFFFE00
0F803F000C000300>
27 39 -3 38 34] 53 @dc
[<
FFFFF0003FF0FFFFF001FFF8FFFFF003FE1C03FC0007F80E03FC000FF80703FC001FF80703
FC001FF00703FC001FF00003FC001FF00003FC001FF00003FC001FE00003FC001FE00003FC
001FE00003FC001FE00003FC001FE00003FC001FC00003FC003F800003FC003F800003FC00
7F000003FC00FC000003FFFFF0000003FFFFFE000003FC007FC00003FC001FE00003FC0007
F80003FC0007F80003FC0003FC0003FC0003FE0003FC0003FE0003FC0003FE0003FC0003FE
0003FC0003FE0003FC0003FE0003FC0003FC0003FC0007FC0003FC0007F80003FC000FF000
03FC007FE000FFFFFFFF8000FFFFFFFE0000FFFFFFE00000>
48 41 -3 40 52] 82 @dc
@F5 @sf
[<
07FFFE0007FFFE00001F8000001F8000001F8000001F8000001F8000001F8000001F800000
1F8000001F8000001F8000001F8000001F8000001F8000001F8000001F8000001F8000C01F
8030C01F8030C01F8030C01F8030E01F8070601F8060701F80E0781F81E07FFFFFE07FFFFF
E0>
28 28 -2 27 33] 84 @dc
[<
07FF001E03C07800F0700070F00078F00078F000787801F81FFFF00FFFE01FFFC01FFF0018
00001800001000001BF8000E0E001E0F001C07003C07803C07803C07803C07801C07301E0F
380E0F3803F8F0>
21 27 -1 17 24] 103 @dc
@F5 @sf
[<
001FFC001FFC0003E00003E00003E00003E00003E00003E003F3E00E0FE01C07E03C03E07C
03E07803E0F803E0F803E0F803E0F803E0F803E0F803E07803E07C03E03C03E01E07E00F0C
E003F060>
22 26 -2 17 25] 113 @dc
32 @eop0
0 0 32 @bop1 262 307 a @F1 @sf(5)69 b(Reco)n(v)n(ering)22 b(F)-6 b(rom)25 b
(Disasters)-911 91 y @F9 @sf(Inciden)o(t)18 b(reco)o(v)o(ery)h(is)e(the)i
(\014nal)e(p)q(ortion)g(of)g(the)h(of)g(the)g(inciden)o(t)g(handling)e
(pro)q(cess)q(.)-1431 50 y(Lik)o(e)e(the)i(other)g(p)q(ortions)f(of)f
(inciden)o(t)h(handling,)f(it)h(is)g(not)g(particularly)f(di\016cult)g
(but)-1431 50 y(is)f(su\016cien)o(tly)h(in)o(tricate)g(to)g(allo)o(w)e
(for)i(man)o(y)f(errors.)-864 91 y @F5 @sf(T)l(elling)j(ev)o(ery)o(one)e
(that)h(is)h(o)o(v)o(er.)k @F9 @sf(F)m(or)11 b(a)g(large)g(inciden)o(t,)h
(it)f(is)h(not)f(un)o(usual)g(to)h(ha)o(v)o(e)-1329 50 y(con)o(tacted)j(p)q
(eople)e(at)h(a)f(dozen)h(or)f(more)g(sites.)19 b(It)13 b(is)h(imp)q
(ortan)o(t)e(to)h(let)h(ev)o(ery)o(one)-1328 50 y(kno)o(w)h(that)f(y)o(ou)h
(are)g(done)g(and)g(to)f(b)q(e)i(sure)g(to)e(giv)o(e)h(y)o(our)f
(colleagues)h(the)g(infor-)-1329 49 y(mation)h(that)i(they)g(need.)29 b
(It)17 b(is)h(also)e(imp)q(ortan)o(t)h(that)g(y)o(our)h(sta\013)f(kno)o
(ws)h(that)-1329 50 y(things)e(are)g(o)o(v)o(er)g(so)f(that)h(they)g(can)g
(return)h(to)f(normal)e(w)o(ork.)24 b(Generally)15 b(a)g(lot)-1329 50 y
(of)h(p)q(eople)h(need)g(to)g(thank)o(ed)f(for)g(the)h(extra)g(hours)g
(and)f(e\013ort)h(that)g(they)g(ha)o(v)o(e)-1329 50 y(con)o(tributed.)-323
83 y @F5 @sf(Remo)o(ving)d(all)j(T)l(o)q(ols.)k @F9 @sf(Man)o(y)14 b(of)g
(the)g(to)q(ols)g(that)g(w)o(ere)h(installed)f(and)g(using)g(during)-1329
50 y(an)j(inciden)o(t)h(need)g(to)f(remo)o(v)o(ed)g(from)f(the)i(system.)
29 b(Some)17 b(will)f(in)o(terfere)i(with)-1329 50 y(p)q(erformance.)30 b
(Others)19 b(are)f(w)o(orth)g(stealing)f(b)o(y)h(a)f(clev)o(er)h(attac)o
(k)o(er.)30 b(Simila)o(rly)-1330 49 y(a)16 b(future)h(attac)o(k)o(er)f
(that)g(gets)h(a)e(c)o(hance)j(to)d(lo)q(ok)g(at)h(the)h(to)q(ols)e(will)g
(kno)o(w)g(a)h(lot)-1329 50 y(ab)q(out)h(ho)o(w)f(y)o(ou)g(are)h(going)e
(to)i(trac)o(k)g(him.)25 b(Often)17 b(extra)g(accoun)o(ts)g(are)g(added)
-1328 50 y(for)d(handling)e(the)j(inciden)o(t.)j(These)d(need)g(to)f(b)q
(e)g(remo)o(v)o(ed.)-1070 83 y @F5 @sf(File)i(and)f(Service)h(Restorat)o
(ion.)k @F9 @sf(Returning)14 b(the)h(\014le)f(system)i(to)e(a)g(\\kno)o
(wn)g(go)q(o)q(d)-1329 50 y(state")i(is)g(often)f(the)h(most)g(di\016cult)e
(part)i(of)f(reco)o(v)o(ery)m(.)23 b(This)16 b(is)f(esp)q(ec)q(ially)g
(true)-1328 50 y(with)f(long)f(inciden)o(ts.)-460 83 y @F5 @sf(Rep)q
(ortin)o(g)i(Requiremen)n(ts.)k @F9 @sf(Often,)11 b(esp)q(ec)q(ially)e(if)h
(la)o(w)f(enforcemen)o(t)i(agencies)g(ha)o(v)o(e)-1329 49 y(b)q(ecome)k
(in)o(v)o(olv)o(ed,)d(a)i(formal)e(rep)q(ort)j(will)d(b)q(e)j(required.)
-1012 83 y @F5 @sf(History)l(.)20 b @F9 @sf(After)14 b(ev)o(erything)f(is)f
(o)o(v)o(er,)h(a)f(\014nal)g(reconstruc)q(tion)h(of)f(the)i(ev)o(en)o(ts)f
(is)g(appro-)-1329 50 y(priate.)18 b(In)c(this)g(w)o(a)o(y)m(,)f(ev)o(ery)o
(one)h(on)g(y)o(our)g(sta\013)g(is)g(telling)f(the)h(same)g(story)m(.)-1323
83 y @F5 @sf(F)l(utur)o(e)h(Prev)o(en)n(tion)o(.)20 b @F9 @sf(It)10 b(is)g
(imp)q(ortan)o(t)f(to)g(mak)o(e)h(sure)g(that)g @F6 @sf(al)r(l)k @F9 @sf
(of)9 b(the)h(vulnerabilities)-1329 50 y(that)k(w)o(ere)h(used)g(in)e(or)h
(created)i(the)e(inciden)o(t)g(are)g(secure)q(d.)-1010 91 y(Just)e(after)g
(an)f(inciden)o(t,)h(it)f(is)g(lik)o(ely)f(to)i(b)q(e)g(a)f(go)q(o)q(d)g
(time)g(to)h(create)h(sensible)f(p)q(olicies)-1432 50 y(where)20 b(they)h
(ha)o(v)o(e)e(not)h(existed)g(in)g(the)g(past)g(and)g(to)f(request)j
(extra)e(equipmen)o(t)g(or)-1432 50 y(sta\016ng)c(to)g(increase)i(securit)o
(y)m(.)26 b(Similarl)o(y)m(,)o 16 x(it)16 b(is)g(a)h(logical)o 15 x(time)f
(for)h(someone)f(else)i(to)-1432 50 y(demand)13 b(stricter)j
(\(nonsensical\))e(p)q(olicies)g(to)g(promote)g(securit)o(y)m(.)-1060 137 y
@F1 @sf(A)68 b(Micro)24 b(Computers)-652 91 y @F9 @sf(While)15 b(the)i
(bulk)e(of)h(this)g(b)q(o)q(ok)g(and)g(class)g(has)h(concerned)h(m)o
(ulti-user)e(computers)h(on)-1432 50 y(net)o(w)o(orks,)d(micro)f
(computers)i(are)f(also)f(w)o(orth)h(some)g(atten)o(tions.)-1008 50 y
(Basically)f(there)i(are)f(four)g(issues)h(that)f(cause)h(concern.)-966
91 y @F5 @sf(Shared)o 15 x(Disks.)20 b @F9 @sf(In)g(man)o(y)e(settings,)k
(micro)c(computers)j(are)f(shared)g(among)e(man)o(y)-1329 50 y(users.)24 b
(Ev)o(en)15 b(if)g(eac)o(h)h(user)g(brings)f(his)g(o)o(wn)g(data,)g(often)g
(the)h(system)g(programs)-1329 50 y(are)h(shared)h(on)e(comm)o(unal)f
(hard-disk,)i(net)o(w)o(ork)g(or)f(library)g(or)g(\015oppies.)27 b(This)
-1329 49 y(means)10 b(that)g(a)f(single)g(error)i(can)e(damage)g(the)h(w)o
(ork)g(of)f(man)o(y)f(p)q(eople.)17 b(Suc)o(h)10 b(errors)-735 180 y(32)
-999 b
32 @eop1
31 @bop0
@F9 @sf
[<
E0E0E0E0>
3 4 -4 28 12] 95 @dc
31 @eop0
0 0 31 @bop1 262 307 a @F2 @sf(4.4)55 b(Exercise)-332 77 y @F9 @sf
(The)16 b(bulk)f(of)g(this)h(class)g(hour)g(is)g(reserv)o(ed)h(for)f(an)f
(inciden)o(t)h(handling)f(sim)o(ulatio)o(n.)22 b(A)-1431 50 y(facili)o(t)o
(y)9 b(will)g(b)q(e)i(describ)q(ed.)18 b(A)11 b(consensus)h(p)q(olicy)d
(for)h(inciden)o(t)g(handling)f(will)g(b)q(e)i(agreed)-1431 49 y(up)q(on)i
(and)h(then)h(the)f(sim)o(ulation)e(will)h(b)q(egin.)-680 50 y(During)f
(the)h(sim)o(ulatio)o(n,)e(the)i(e\013ect)q(s)h(of)e(the)h(attac)o(k)o
(ers)g(actions)g(and)f(those)i(of)e(third)-1432 50 y(parties)f(will)d(b)q
(e)k(describ)q(ed.)18 b(The)11 b(participan)o(ts)g(can)f(c)o(ho)q(ose)i
(actions)e(and)g(tak)o(e)h(measure-)-1431 50 y(men)o(ts)g(and)h(will)d(b)q
(e)j(informed)f(of)g(the)h(results)g(of)f(those)h(actions)g(and)f
(measuremen)o(ts.)19 b(In)-1432 50 y(a)9 b(su\016cien)o(tly)h(small)f(w)o
(orking)g(group)h(that)g(had)g(sev)o(eral)h(da)o(ys,)f(w)o(e)g(w)o(ould)f
(run)i(a)f(soft)o(w)o(are)-1432 49 y(sim)o(ulati)o(on;)j(but)i(as)g(man)o
(y)f(of)g(the)h(actions)g(tak)o(e)f(hours)h(\(e)5 b(_)-16 b(g)5 b(_)-16 b
(a)13 b(full)h(system)h(comparison)-1432 50 y(to)f(the)h(original)o 13 x
(distribution\),)f(w)o(e)g(will)f(pro)q(ceed)j(v)o(erbal)e(in)g(the)h
(short)g(v)o(ersion)g(of)f(this)-1432 50 y(w)o(orkshop.)512 1958 y(31)-999 b
31 @eop1
30 @bop0
@F2 @sf
[<
FFFFFFC000FFFFFFF80007F001FE0007F0007F0007F0003F8007F0003F8007F0001FC007F0
001FC007F0001FC007F0001FC007F0001FC007F0001FC007F0001F8007F0003F8007F0003F
0007F0007E0007F001FC0007FFFFF00007FFFFF00007F003F80007F000FC0007F000FE0007
F0007E0007F0007F0007F0007F0007F0007F0007F0007F0007F0007F0007F0007E0007F000
7E0007F000FC0007F001F800FFFFFFE000FFFFFF8000>
34 34 -2 33 40] 66 @dc
[<
0000FFE00000FFE000001F0000001F0000001F0000001F0000001F0000001F0000001F0000
001F0001FC1F0007FF9F000FC1DF001F007F003E003F007E001F007E001F00FC001F00FC00
1F00FC001F00FC001F00FC001F00FC001F00FC001F007C001F007E001F007E003F003F003F
001F006F000FC1C70007FF870000FE0300>
27 32 -2 21 30] 113 @dc
@F5 @sf
[<
01FFF801FFF8000F80000F80000F80000F80000F80000F80FFFFF8FFFFF8C00F80600F8030
0F80180F800C0F80060F80030F80018F80008F8000CF80006F80003F80001F80000F800007
80000380000180>
21 27 -1 26 24] 52 @dc
[<
FFFFC0FFFFC07FFFC03FFFC01FFFC00800E006006003006001806000E00000700000380000
1E00001F00000F800007C00007C00007E07803E0FC03E0FC03E0FC07E0FC07C0780FC0383F
801FFE0007F800>
19 27 -2 26 24] 50 @dc
[<
7FFF807FFF8003E00003E00003E00003E00003E00003E00003E00003E00003E00003E00003
E00003E00003E00003E00003E00003E00003E00003E00003E00003E000F3E000FFE0000FE0
0001E000006000>
17 27 -3 26 24] 49 @dc
[<
7FE1FFC07FE1FFC00F807C000F807C000F807C000F807C000F807C000F807C000F807C000F
807C000F807C000F807C000F807C000F807C000F807C000F807C00FFFFFFC0FFFFFFC00F80
7C000F807C000F807C000F807C000F807C000F807C1C0F807C3E07C07C3E03C03E3E01F03F
1C003FE3F8>
31 29 0 28 28] 11 @dc
@F5 @sf
[<
07F8001FFE00781F00780F80FC07C0FC07E0FC07E07807E03007E00007E00007C00007C000
0F80001E0003F800003C00001E00000F80000F803807C07C07C07E07C07C07C03C0F803C1F
001FFE0003F800>
19 27 -2 26 24] 51 @dc
@F5 @sf
[<
07F0001FFE00381F00600F80F007C0F807C0F807E0F807E07807E00007E00007E00007E000
07C0100780180F801E0E0019F8001800001800001800001800001FC0001FF8001FFC001FFE
001FFF00180180>
19 27 -2 26 24] 53 @dc
@F4 @sf
[<
00FC0003FF0007FFC00F03C01C3C00387E0078FF0071C38071C380E381C0E381C0E381C0E3
81C0E381C0E381C0E381C071C3C071C3C078FF80387F801C3F800F070007FE0003FC0000F8
00>
18 25 -2 24 22] 64 @dc
[<
7F87F0FFCFF07F87F00E07800E07000E0E000F1E000FBC000FF8000FF0000EF0000E78000E
3C000E1E000E0F000E7FE00E7FE00E7FE00E00000E00000E00000E00007E0000FE00007E00
00>
20 25 0 24 22] 107 @dc
30 @eop0
0 0 30 @bop1 262 307 a @F2 @sf(4.2)55 b(Basic)18 b(T)-5 b(ec)n(hniques)-545
77 y @F9 @sf(There)15 b(are)f(\014v)o(e)g(basic)g(sets)h(of)e(tec)o
(hniques)j(for)d(understanding)i(what)e(has)h(happ)q(ened.)-1399 108 y
@F5 @sf(4.2.1)47 b(Di\013erencing)-399 76 y @F9 @sf(Di\013erencing)12 b
(is)g(that)h(act)f(of)g(comparing)f(the)i(state)g(of)f(a)g(part)g(of)g
(the)h(computer)g(system)-1431 50 y(to)i(the)i(state)g(that)f(it)g(w)o(as)g
(in)f(previously)m(.)24 b(In)17 b(some)f(cases)h(w)o(e)f(ha)o(v)o(e)g
(compared)h(ev)o(ery)-1431 50 y(executable)h(system)g(\014le)f(with)g(the)g
(corresp)q(onding)h(\014le)f(on)g(the)h(original)d(distribution)-1432 50 y
(tap)q(e)9 b(to)h(\014nd)f(what)g(\014les)h(the)g(attac)o(k)o(er)g(ma)o(y)f
(ha)o(v)o(e)g(mo)q(di\014ed.)16 b(Chec)o(ksums)10 b(are)g(often)g(used)-1431
50 y(to)j(decre)q(ase)j(the)f(cost)f(of)g(di\013erencing.)19 b(Sometimes)
14 b(p)q(eople)h(lo)q(ok)e(only)h(for)f(di\013erence)q(s)-1430 49 y(in)g
(the)h(protection)h(mo)q(des)f(of)f(the)i(\014les.)-646 108 y @F5 @sf
(4.2.2)47 b(Finding)-306 77 y @F9 @sf(Finding)10 b(is)i(generally)f(c)o
(heap)q(er)i(than)e(di\013erencing.)18 b(Finding)11 b(is)g(the)i(act)e(of)g
(lo)q(oking)f(at)i(a)-1432 50 y(part)h(of)g(a)g(computer)h(system)g(for)f
(\014les)h(that)g(ha)o(v)o(e)f(b)q(een)i(mo)q(di\014ed)e(during)g(a)g
(particular)-1432 50 y(time)g(or)h(ha)o(v)o(e)g(some)g(other)g(in)o
(teresting)h(prop)q(ert)o(y)m(.)-822 107 y @F5 @sf(4.2.3)47 b(Sno)q(oping)
-339 77 y @F9 @sf(Sno)q(oping)11 b(is)h(the)h(act)f(of)g(placing)f
(monitors)h(on)g(a)g(system)h(to)f(rep)q(ort)h(the)g(future)g(actions)-1432
50 y(of)e(an)g(attac)o(k)o(er.)18 b(Often)12 b(a)f(scripting)h(v)o(ersion)g
(of)f(the)h(command)f(line)g(in)o(terpreter)i(is)f(used)-1431 50 y(or)h(a)h
(line)f(prin)o(ter)i(or)f(PC)g(is)f(spliced)i(in)e(to)h(the)g(incoming)f
(serial)h(line.)-1136 108 y @F5 @sf(4.2.4)47 b(T)l(rac)o(king)-326 76 y
@F9 @sf(T)m(rac)o(king)16 b(is)i(the)g(use)h(of)e(system)h(logs)f(and)h
(other)g(audit)f(trails)h(to)f(try)h(to)g(determine)-1431 50 y(what)c(an)h
(attac)o(k)o(er)g(has)g(done.)21 b(It)15 b(is)f(particularly)g(useful)h
(in)g(determining)f(what)h(other)-1431 50 y(mac)o(hines)e(migh)o(t)g(b)q
(e)i(in)o(v)o(olv)n(ed)e(in)h(an)f(inciden)o(t.)-778 108 y @F5 @sf(4.2.5)
47 b(Psyc)o(hology)-379 76 y @F9 @sf(A)16 b(wide)h(range)g(of)f(non-tec)o
(hnical)h(approac)o(hes)g(ha)o(v)o(e)g(b)q(een)h(emplo)o(y)o(ed)e(o)o(v)o
(er)h(the)g(y)o(ears)-1431 50 y(with)11 b(an)h(ev)o(en)h(wider)f(range)g
(of)g(results.)18 b(Among)11 b(these)j(approac)o(hes)f(ha)o(v)o(e)f(b)q
(een)h(lea)o(ving)-1433 50 y(messages)k(for)f(the)i(attac)o(k)o(er)f(to)f
(\014nd,)h(starting)g(talk)f(links,)g(calling)f(lo)q(cal)h(high)g(sc)o(ho)q
(ol)-1432 50 y(teac)o(hers,)f(etc.)-236 116 y @F2 @sf(4.3)55 b
(Prosecution)-417 77 y @F9 @sf(Prosecution)16 b(has)f(historically)f(b)q
(een)i(v)o(ery)f(di\016cult.)21 b(Less)16 b(than)f(a)g(y)o(ear)g(ago,)f
(the)i(FBI)-1431 49 y(advised)c(me)h(that)g(it)g(w)o(as)g(essen)o(tially)f
(imp)q(ossible)h(to)f(succe)q(ed)j(in)d(a)h(prosecution.)18 b(More)-1431
50 y(recen)o(tly)m(,)13 b(FBI)h(agen)o(t)f(Da)o(v)o(e)g(Ico)o(v)o(e,)g(\()p
@F4 @sf(icove@doc)o(kmast)o(er.cn)o(sc)p(.m)o(il)p @F9 @sf(,)e(703{640{11)o
(76\))-1433 50 y(has)k(assured)i(me)e(that)h(the)g(FBI)g(will)e(b)q(e)i
(taking)f(a)g(more)g(activ)o(e)h(role)f(in)g(the)h(prosecu-)-1430 50 y
(tion)f(of)g(computer)i(break-ins)f(and)g(has)g(expresse)q(d)h(in)o
(terest)h(in)d(lending)h(assistance)h(to)-1432 50 y(in)o(v)o(estigation)
12 b(where)j(prosecution)g(is)f(appropriate.)-154 344 y(30)-999 b
30 @eop1
29 @bop0
@F1 @sf
[<
007FFFF8007FFFF8007FFFF80000FE000000FE000000FE000000FE000000FE000000FE0000
00FE000000FE00FFFFFFF8FFFFFFF8FFFFFFF8E0007E0070007E0038007E001C007E000E00
7E000E007E0007007E0003807E0001C07E0000E07E0000E07E0000707E0000387E00001C7E
00000E7E00000E7E0000077E000003FE000001FE000000FE000000FE0000007E0000003E00
00001E0000000E00>
29 39 -2 38 34] 52 @dc
@F5 @sf
[<
FFFFFEFFFFFE0FC07E0FC01E0FC00E0FC0060FC0070FC0070FC0030FC0030FC0030FC0000F
C0000FC0000FC0000FC0000FC0000FC0000FC0000FC0000FC0000FC0000FC0000FC0000FC0
000FC000FFFF00FFFF00>
24 28 -2 27 29] 76 @dc
29 @eop0
0 0 29 @bop1 262 307 a @F1 @sf(4)69 b(Inciden)n(t)22 b(Handling)-645 91 y
@F9 @sf(The)16 b(di\016cult)o(y)f(of)h(handling)f(an)h(inciden)o(t)g(is)g
(determined)h(b)o(y)f(sev)o(eral)h(factors.)25 b(These)-1430 50 y(include)
18 b(the)i(lev)o(el)e(of)g(preparation,)i(the)f(sensitivit)o(y)f(of)g(the)i
(data,)f(and)f(the)i(relativ)o(e)-1432 50 y(exp)q(ertise)e(lev)o(els)e(of)g
(the)h(attac)o(k)o(er\(s\))g(and)f(the)h(defender\(s)q(\).)26 b(Hop)q
(efully)m(,)16 b(preliminary)-1433 50 y(w)o(ork)i(in)g(terms)i(of)e
(gathering)h(to)q(ols,)g(ha)o(ving)f(noti\014cation)g(lists,)h(p)q
(olicies)g(and)g(most)-1432 49 y(imp)q(ortan)o(tly)12 b(bac)o(kup)i(tap)q
(es,)g(will)f(mak)o(e)g(the)i(actual)e(handling)g(m)o(uc)o(h)h(easier.)-1209
50 y(This)g(section)g(is)g(divided)f(in)o(to)g(three)i(parts.)k(The)14 b
(\014rst)h(of)e(these)i(deal)f(with)f(general)-1431 50 y(principles.)22 b
(The)16 b(second)h(presen)o(ts)g(some)e(particular)h(\(simple\))f(tec)o
(hniques)h(that)g(ha)o(v)o(e)-1432 50 y(pro)o(v)o(en)e(useful)h(in)f(the)i
(past.)21 b(Finally)o -3 x(,)13 b(the)i(third)g(section)g(presen)o(ts)q
16 x(a)f(descr)q(iption)h(of)f(a)-1432 50 y(sim)o(ulati)o(on)f(exercise)i
(based)g(a)e(set)i(of)e(real)h(attac)o(ks.)-839 116 y @F2 @sf(4.1)55 b
(Basic)18 b(Hin)n(ts)-408 76 y @F9 @sf(There)g(are)f(a)g(n)o(um)o(b)q(er)g
(of)f(basic)i(issues)g(to)f(understand)h(when)f(handling)f(a)h(computer)
-1431 50 y(inciden)o(t.)j(Most)15 b(of)f(these)i(issues)g(are)f(presen)o
(t)h(in)f(handling)e(most)i(of)f(these)i(issues)g(and)-1432 50 y(tec)o
(hniques)f(are)f(relev)n(an)o(t)g(in)f(a)h(wide)g(v)n(ariet)o(y)f(of)g(un)o
(usual)h(and)g(emergency)h(situations.)-1420 108 y @F5 @sf(4.1.1)47 b(P)o
(anic)16 b(Lev)o(el)-387 77 y @F9 @sf(It)i(is)h(critical)f(to)g(determine)i
(ho)o(w)e(m)o(uc)o(h)g(panic)h(is)f(appropriate.)32 b(In)19 b(man)o(y)e
(cases,)k(a)-1432 49 y(problem)13 b(is)h(not)f(noticed)i(un)o(til)d(w)o
(ell)i(after)g(it)f(has)h(o)q(ccurred)i(and)d(another)h(hour)g(or)g(da)o
(y)-1432 50 y(will)e(not)i(mak)o(e)f(a)h(di\013erence.)-477 108 y @F5 @sf
(4.1.2)47 b(Call)17 b(Logs)f(and)f(Time)h(Lines)-683 77 y @F9 @sf(All)g
(\(or)i(almost)f(all\))f(bad)i(situations)f(ev)o(en)o(tually)g(come)h(to)f
(an)h(end.)29 b(A)o(t)18 b(that)g(p)q(oin)o(t,)-1433 50 y(and)12 b(p)q
(erhaps)i(at)f(earlier)g(p)q(oin)o(ts,)f(a)h(list)f(of)g(actions)h(and)g
(esp)q(ecially)g(comm)o(unications)f(is)-1432 49 y(needed)j(to)f(\014gure)g
(out)g(what)g(happ)q(ened.)-667 108 y @F5 @sf(4.1.3)47 b(Accoun)o(tabilit)o
(y)15 b(and)g(Authorit)n(y)-766 77 y @F9 @sf(During)i(an)h(inciden)o(t)g
(it)f(is)h(imp)q(ortan)o(t)f(to)h(remind)g(p)q(eople)g(what)g(decisions)h
(they)f(are)-1431 50 y(emp)q(o)o(w)o(ered)c(to)g(mak)o(e)g(and)f(what)h(t)o
(yp)q(es)h(of)e(decisions)i(that)f(they)g(are)h(not.)j(Ev)o(en)c(when)-1431
49 y(this)f(is)h(explicitly)e(discussed)j(and)f(form)o(ulated)f(in)g(a)g
(con)o(tingency)h(plan,)e(p)q(eople)i(ha)o(v)o(e)g(a)-1432 50 y(tendency)j
(to)f(exceed)i(their)f(authorities)f(when)g(they)h(are)g(con)o(vinced)f
(that)g(they)h(kno)o(w)-1432 50 y(what)c @F6 @sf(should)19 b @F9 @sf(b)q
(e)14 b(done.)-388 108 y @F5 @sf(4.1.4)47 b(Audit)15 b(Logs)-378 77 y
@F9 @sf(Audit)g(logs)g(need)h(to)f(b)q(e)h(copied)g(to)g(a)f(safe)g(place)h
(as)g(quic)o(kly)e(as)i(p)q(ossible.)23 b(It)15 b(is)h(often)-1432 49 y
(the)c(case)h(that)g(an)f(attac)o(k)o(er)g(returns)i(to)e(a)g(computer)h
(to)f(destro)o(y)g(evidence)i(that)e(he)h(had)-1432 50 y(previously)g
(forgotten)h(ab)q(out.)-494 108 y @F5 @sf(4.1.5)47 b(Timestamps)-400 77 y
@F9 @sf(The)18 b(second)h(most)e(p)q(o)o(w)o(erful)h(to)q(ol)f(\(second)i
(only)e(to)h(bac)o(kup)g(tap)q(es\))g(in)g(an)f(inciden)o(t)-1431 50 y
(handlers)g(arsenal)g(is)g(timestamps.)28 b(When)17 b(in)f(doubt)h(as)h
(to)e(what)h(to)g(do,)g(try)h(to)f(un-)-1432 49 y(derstand)d(the)g
(sequencing)g(of)e(the)i(ev)o(en)o(ts.)19 b(This)13 b(is)g(esp)q(ec)q
(ially)f(true)i(when)g(some)f(of)g(the)-1431 50 y(actions)g(will)g(c)o
(hange)h(the)h(v)n(alue)e(on)g(the)i(system)g(clo)q(c)o(k.)-210 131 y(29)
-999 b
29 @eop1
28 @bop0
/@F7 @newfont
@F7 @sf
[<
03C00FF01FF83FFC7FFE7FFEFFFFFFFFFFFFFFFF7FFE7FFE3FFC1FF80FF003C0>
16 16 -2 17 21] 15 @dc
@F9 @sf
[<
C000C0006000600060003000300030001800180018000C000C000C00060006000300030003
0001800180018000C000C000C000600060003000300030001800180018000C000C000C0006
0006000600030001>
16 41 -2 30 21] 47 @dc
28 @eop0
0 0 28 @bop1 324 307 a @F7 @sf(\017)20 b @F9 @sf(A)14 b(user)h(rep)q(orts)h
(that)d(the)i(last)f(login)e(time/place)i(on)f(his)h(accoun)o(t)g(aren't)g
(his.)-1283 67 y(Tw)o(o)f(w)o(eeks)i(later)e(y)o(ou)g(\014nd)g(that)h(y)o
(our)f(username)h(space)h(isn't)e(unique)g(and)h(that)-1329 49 y(unauthen)o
(ticated)20 b(logins)d(are)i(allo)o(w)o(ed)e(b)q(et)o(w)o(een)j(mac)o
(hines)f(based)g(en)o(tirely)g(on)-1329 50 y(username.)-223 83 y @F7 @sf
(\017)h @F9 @sf(A)c(guest)h(accoun)o(t)f(is)g(suddenly)g(using)g(four)f
(CPU)h(hours)g(p)q(er)h(da)o(y)e(when)i(b)q(efore)-1328 50 y(it)d(had)g
(just)g(b)q(een)h(used)f(for)g(mail)e(reading.)-699 66 y(Y)m(ou)g(\014nd)h
(that)g(the)g(extra)g(CPU)g(time)g(has)g(b)q(een)g(going)f(in)o(to)g
(passw)o(ord)h(crac)o(king.)-1329 67 y(Y)m(ou)h(\014nd)g(that)g(the)g
(passw)o(ord)g(\014le)g(isn't)g(one)g(from)f(y)o(our)h(cen)o(ter.)-1058
66 y(Y)m(ou)g(determine)g(whic)o(h)g(cen)o(ter)i(it)d(is)h(from.)-743 83 y
@F7 @sf(\017)20 b @F9 @sf(Y)m(ou)14 b(hear)g(rep)q(orts)h(of)f(computer)g
(virus)g(that)g(pain)o(ts)g(trains)g(on)f(CR)m(T's.)-1172 67 y(Y)m(ou)e
(login)e(to)i(a)g(mac)o(hine)f(at)h(y)o(our)g(cen)o(ter)i(and)d(\014nd)h
(suc)o(h)h(a)f(train)g(on)f(y)o(our)h(scree)q(n.)-1328 66 y(Y)m(ou)j(lo)q
(ok)f(in)g(the)h(log)f(and)h(\014nd)g(not)g(notation)f(of)g(suc)o(h)i(a)e
(feature)i(b)q(eing)f(added.)-1313 67 y(Y)m(ou)j(notice)g(that)g(\014v)o
(e)g(attempts)g(w)o(ere)h(made)f(to)f(install)g(it)h(within)f(an)g(hour)h
(of)-1329 49 y(eac)o(h)e(b)q(efore)f(the)h(curren)o(t)g(one.)-508 67 y
(Three)h(da)o(ys)f(later)f(y)o(ou)g(learn)h(that)g(it)f(w)o(as)h(put)f(up)h
(b)o(y)g(a)f(system)h(administrator)-1329 50 y(lo)q(cally)c(who)i(had)f
(heard)h(nothing)f(ab)q(out)h(the)g(virus)g(scare)h(or)e(ab)q(out)h(y)o
(our)f(asking)-1329 49 y(ab)q(out)i(it.)-200 83 y @F7 @sf(\017)20 b @F9 @sf
(Y)m(ou)14 b(notice)g(that)g(y)o(our)f(mac)o(hine)h(has)g(b)q(een)h(brok)o
(en)f(in)o(to.)-946 67 y(Y)m(ou)g(\014nd)g(that)g(nothing)f(is)h(damaged.)
-627 66 y(A)g(high)g(sc)o(ho)q(ol)f(studen)o(t)i(calls)f(up)g(and)f(ap)q
(ologizes)h(for)f(doing)g(it.)-1099 83 y @F7 @sf(\017)20 b @F9 @sf(An)f
(en)o(tire)g(disk)f(partition)g(of)g(data)g(is)h(deleted.)33 b(Mail)17 b
(is)h(b)q(ouncing)h(b)q(ouncing)-1329 50 y(b)q(ecause)q 15 x(the)14 b
(mail)f(utilities)g(w)o(as)h(on)f(that)h(partition.)-867 67 y(When)e(y)o
(ou)f(restore)i(the)g(partition,)d(y)o(ou)i(\014nd)f(that)h(a)f(n)o(um)o
(b)q(er)h(of)f(system)i(binaries)-1329 49 y(ha)o(v)o(e)j(b)q(een)i(c)o
(hanged.)25 b(Y)m(ou)16 b(also)f(notice)i(that)f(the)h(system)g(date)f(is)g
(wrong.)25 b(O\013)-1328 50 y(b)o(y)14 b(1900)f(y)o(ears.)-300 83 y @F7 @sf
(\017)20 b @F9 @sf(A)14 b(rep)q(orter)q 15 x(calls)f(up)h(asking)g(ab)q
(out)f(the)i(breakin)f(at)f(y)o(our)h(cen)o(ter.)20 b(Y)m(ou)13 b(ha)o(v)o
(en't)-1329 50 y(heard)i(of)e(an)o(y)g(suc)o(h)i(breakin.)-482 66 y(Three)h
(da)o(ys)e(later)h(y)o(ou)f(learn)h(that)f(there)i(w)o(as)e(a)h(breakin.)
20 b(The)15 b(cen)o(ter)h(director)-1328 50 y(had)e(his)g(wife's)f(name)h
(as)g(a)f(passw)o(ord.)-674 83 y @F7 @sf(\017)20 b @F9 @sf(A)14 b(c)o
(hange)g(in)g(system)h(binaries)e(is)h(detecte)q(d.)-728 67 y(The)h(da)o
(y)e(that)h(it)f(is)h(correcte)q(d)h(they)g(again)d(are)j(c)o(hanged.)-949
66 y(This)f(rep)q(eats)i(itself)d(for)h(some)g(w)o(eeks.)-31 507 y(28)-999 b
28 @eop1
27 @bop0
@F9 @sf
[<
0300078007800300000000000000000000000100010001000100010001000180008000C000
600030001C000CF00EF00EF00EE00E401C30380FE0>
15 29 -2 28 20] 63 @dc
@F2 @sf
[<
0000E0000E00000000E0000E00000000F0001E00000001F0001F00000001F0001F00000003
F8003F80000003F8003F80000003FC007F80000007FC007FC0000007FC007FC000000FF600
FFE000000FE600FE6000000FE600FE6000001FE301FC3000001FC301FC3000001FC383FC30
00003F8183F81800003F8183F81800007F80C7F81C00007F00C7F00C00007F00C7F00C0000
FF006FE0060000FE006FE0060000FE007FE0060001FC003FC0030001FC003FC0030003FC00
3F80038003F8003F80018003F8007F80018007F0007F0000C007F0007F0000C00FF000FF00
00E0FFFF0FFFF01FFEFFFF0FFFF01FFE>
55 34 -1 33 58] 87 @dc
27 @eop0
0 0 27 @bop1 262 307 a @F5 @sf(List)15 b(Logistics.)20 b @F9 @sf(Ho)o(w)
14 b(often)g(to)f(y)o(ou)h(up)q(date)g(the)h(inciden)o(t)f(plan?)-1003 67 y
(Ho)o(w)g(do)q(es)g(y)o(ou)g(system)h(sta\013)f(learn)g(ab)q(out)g(it?)-870
116 y @F2 @sf(3.4)55 b(T)-5 b(o)r(ols)18 b(to)h(ha)n(v)n(e)g(on)g(hand)-671
76 y @F9 @sf(File)13 b(Di\013erencing)h(T)m(o)q(ols)-349 50 y(Net)o(w)o
(atc)o(her)-204 50 y(Sp)o(ying)f(to)q(ols)-223 50 y(Bac)o(kup)h(T)m(ap)q
(es)-255 50 y(Blanks)g(T)m(ap)q(es)-243 49 y(Noteb)q(o)q(oks)-253 117 y
@F2 @sf(3.5)55 b(Sample)18 b(Scenarios)g(to)h(W)-5 b(ork)18 b(on)h(in)f
(Groups)-1113 76 y @F9 @sf(In)f(order)g(to)g(understand)i(what)e(goal)e
(priorities)i(y)o(ou)g(ha)o(v)o(e)g(for)g(y)o(ou)f(cen)o(ter)j(and)e(as)g
(a)-1432 50 y(general)11 b(exercise)q 13 x(in)g(planning,)f(let)i(us)g
(consider)g(a)g(n)o(um)o(b)q(er)g(of)f(sample)g(problems.)17 b(Eac)o(h)-1431
50 y(of)11 b(these)j(is)f(a)f(simpli\014ed)g(v)o(ersion)h(of)f(a)g(real)g
(inciden)o(t.)18 b(What)12 b(w)o(ould)g(b)q(e)h(appropriate)g(to)-1432 50 y
(do)h(if)f(a)h(similar)f(thing)h(happ)q(enned)h(at)g(y)o(our)f(cen)o(ter?)
21 b(Eac)o(h)14 b(new)h(paragraph)f(indicates)-1431 50 y(new)g(informatio)o
(n)f(that)h(is)f(rece)q(iv)o(ed)i(later.)-634 91 y @F7 @sf(\017)20 b @F9 @sf
(A)11 b(system)g(programmer)f(notices)h(that)f(at)g(midnigh)o(t)f(eac)o(h)i
(nigh)o(t,)f(someone)h(mak)o(es)-1329 50 y(25)j(attempts)g(to)g(guess)h(a)e
(username{passw)o(ord)i(com)o(bination)-1020 66 y(Tw)o(o)k(w)o(eeks)i
(later,)g(he)f(rep)q(orts)h(that)e(eac)o(h)h(nigh)o(t)f(it)h(is)f(the)h
(same)g(username{)-1328 50 y(passw)o(ord)15 b(com)o(bination.)o -456 83 a
@F7 @sf(\017)20 b @F9 @sf(A)g(system)g(programmer)f(gets)h(a)g(call)e(rep)q
(orting)i(that)g(a)f(ma)r(jor)g(underground)-1328 50 y(crac)o(k)o(er)g
(newsletter)g(is)e(b)q(eing)h(distributed)g(from)f(the)h(administrativ)o
(e)e(mac)o(hine)-1329 50 y(at)e(his)g(cen)o(ter)h(to)f(\014v)o(e)g
(thousand)g(sites)h(in)e(the)i(US)f(and)g(W)m(estern)g(Europ)q(e.)-1211
66 y(Eigh)o(t)j(w)o(eeks)i(later,)f(the)g(authorities)g(call)e(to)i
(inform)e(y)o(ou)h(the)h(information)e(in)-1329 50 y(one)e(of)e(these)j
(newsletters)q 15 x(w)o(as)e(used)h(to)f(disable)g(\\911")f(in)h(a)g(ma)r
(jor)f(cit)o(y)h(for)g(\014v)o(e)-1328 50 y(hours.)-152 83 y @F7 @sf(\017)
20 b @F9 @sf(A)11 b(user)h(calls)e(in)g(to)h(rep)q(ort)g(that)g(he)g
(can't)g(login)e(to)h(his)h(accoun)o(t)g(at)f(3)h(in)f(the)h(morn-)-1329
49 y(ing)j(on)g(a)g(Saturda)o(y)m(.)19 b(The)c(system)g(sta\013er)g(can't)f
(login)f(either.)21 b(After)15 b(reb)q(o)q(oting)-1329 50 y(to)f(single)g
(user)h(mo)q(de,)e(he)h(\014nds)h(that)f(passw)o(ord)g(\014le)g(is)g(empt)o
(y)m(.)-1033 67 y(By)k(Monda)o(y)e(morning,)g(y)o(our)h(sta\013)g
(determines)i(that)e(a)f(n)o(um)o(b)q(er)i(of)e(privileged)-1329 49 y(\014le)e
(transfer)h(to)q(ok)f(place)g(b)q(et)o(w)o(een)h(this)f(mac)o(hine)f(and)h
(a)g(lo)q(cal)f(univ)o(ersit)o(y)m(.)-1226 67 y(T)m(uesda)o(y)h(morning)f
(a)h(cop)o(y)g(of)g(the)h(deleted)g(passw)o(ord)g(\014le)f(is)g(found)f
(on)h(the)h(uni-)-1329 50 y(v)o(ersit)o(y)f(mac)o(hine)g(along)f(with)g
(passw)o(ord)i(\014les)f(for)f(a)h(dozen)h(other)f(mac)o(hines.)-1266 66 y
(A)e(w)o(eek)g(later)g(y)o(ou)f(\014nd)h(that)f(y)o(our)h(system)g
(initiali)o(zation)e(\014les)i(had)f(b)q(een)i(altered)-1328 50 y(in)h(a)f
(hostile)h(fashion.)-397 83 y @F7 @sf(\017)20 b @F9 @sf(Y)m(ou)13 b(rece)q
(iv)o(e)h(a)g(call)f(sa)o(ying)g(that)g(breakin)h(to)g(a)f(go)o(v)o
(ernmen)o(t)h(lab)f(o)q(ccurred)i(from)-1329 50 y(one)i(of)f(y)o(our)g
(cen)o(ter's)i(mac)o(hines.)25 b(Y)m(ou)16 b(are)h(requested)h(to)f(pro)o
(vide)f(accoun)o(ting)-1329 50 y(\014les)f(to)e(help)h(trac)o(kdo)o(wn)g
(the)h(attac)o(k)o(er.)-656 66 y(A)g(w)o(eek)g(later)f(y)o(ou)g(are)h(giv)o
(en)f(a)g(list)g(of)f(mac)o(hines)i(at)f(y)o(our)g(site)h(that)f(ha)o(v)o
(e)g(b)q(een)-1327 50 y(brok)o(en)g(in)o(to.)373 146 y(27)-999 b
27 @eop1
26 @bop0
@F9 @sf
[<
60F0F060000000000060606060606060606060606060F0F0F0F0F0F0F060>
4 30 -4 29 12] 33 @dc
@F2 @sf
[<
FFFFE000FFFFE00007F0000007F0000007F0000007F0000007F0000007F0000007F0000007
F0000007F0180007F0180007F0180007F0180007F0380007F0780007FFF80007FFF80007F0
780007F0380007F0180007F0180007F0180C07F0180C07F0000C07F0000C07F0001C07F000
1C07F0001807F0003807F0007807F001F8FFFFFFF8FFFFFFF8>
30 34 -2 33 35] 70 @dc
@F5 @sf
[<
FFFFFE>
23 1 0 11 24] 123 @dc
@F5 @sf
[<
FFFFFFFF07E007E007E007E007E007E007E007E007E007E007E007E007E007E007E007E007
E007E007E007E007E007E007E007E0FFFFFFFF>
16 28 -1 27 18] 73 @dc
[<
000FF800007FFE0000FC078001F001C003E000E007C0006007C000300FC000300FC000300F
C000300FC000300FC000300FC000300FC000300FC000300FC000300FC000300FC000300FC0
00300FC000300FC000300FC000300FC000300FC000300FC000300FC00030FFFC03FFFFFC03
FF>
32 28 -2 27 37] 85 @dc
26 @eop0
0 0 26 @bop1 324 307 a @F7 @sf(\017)20 b @F9 @sf(Long)14 b(cycles.)20 b
(It)14 b(ma)o(y)f(tak)o(e)h(w)o(eeks)h(or)f(mon)o(ths)g(to)g(notice)h(a)e
(mistak)o(e.)19 b(A)14 b(system)-1328 50 y(that)g(reuses)q 15 x(the)g
(same)g(tap)q(e)g(ev)o(ery)h(w)o(eek)f(will)f(ha)o(v)o(e)g(destro)o(y)o
(ed)i(the)f(data)g(b)q(efore)-1328 50 y(the)h(error)g(is)e(noticed.)-399
82 y @F7 @sf(\017)20 b @F9 @sf(Separate)e(tap)q(es.)27 b(Ov)o(erwriting)
17 b(the)g(existing)g(bac)o(kup)g(b)q(efore)g(ha)o(ving)f(the)h(new)-1328
50 y(one)d(completed)h(is)e(an)h(acciden)o(t)h(w)o(aiting)d(to)i(happ)q
(en.)-919 82 y @F7 @sf(\017)20 b @F9 @sf(V)m(eri\014ed)13 b(bac)o(kups.)
18 b(It)12 b(is)h(necessary)h(to)e(mak)o(e)g(sure)h(that)g(one)f(can)h
(read)g(the)g(tap)q(es)-1328 49 y(bac)o(k)k(in.)27 b(One)17 b(site)h(with)e
(a)h(programming)e(bug)i(in)f(its)h(bac)o(k)g(up)g(utilit)o(y)e(had)i(a)
-1329 50 y(store)e(ro)q(om)e(\014lled)h(with)f(unreadable)i(tap)q(es!)-828
116 y @F2 @sf(3.3)55 b(F)-5 b(orming)19 b(a)g(Plan)-507 77 y @F9 @sf
(While)13 b(the)i(\014rst)h(ma)r(jor)d(section)j(\(a)o(v)o(oidance\))e
(con)o(tained)g(a)g(lot)g(of)g(standard)h(solutions)-1432 49 y(to)e
(standard)h(problems,)f(planning)f(requires)j(a)e(great)h(deal)f(more)h
(though)o(t)f(and)h(consid-)-1432 50 y(eration.)j(A)d(great)h(deal)e(of)h
(this)f(is)h(list)g(making.)o -780 89 a @F5 @sf(Calls)i(Lists.)21 b @F9 @sf
(If)16 b(there)j(a)e(system)h(sta\013er)g(susp)q(ects)q 18 x(securit)o(y)g
(inciden)o(t)g(is)f(happ)q(ening)-1329 50 y(righ)o(t)d(no)o(w,)f(who)g(he)i
(should)e(call?)-556 66 y(And)h(if)f(he)i(gets)f(no)g(answ)o(er)h(on)e
(that)h(line?)-698 66 y(What)h(if)f(the)i(p)q(eople)f(are)h(the)f(call)g
(list)f(are)i(no)f(longer)f(emplo)o(y)o(ees)i(or)f(ha)o(v)o(e)g(long)-1330
50 y(since)g(died?)-198 66 y(What)f(if)f(it)g(Christmas)h(Da)o(y)f(or)h
(Sunda)o(y)g(morning?)-955 82 y @F5 @sf(Time{Distance.)20 b @F9 @sf(Ho)o
(w)11 b(long)g(will)g(it)g(tak)o(e)i(for)e(the)i(p)q(eople)f(who)g(are)g
(called)g(to)g(arriv)o(e?)-1329 65 y(What)i(should)f(b)q(e)i(done)f(un)o
(til)f(they)h(get)h(there?)-879 82 y @F5 @sf(This)g(a)h(user)f(notices.)
20 b @F9 @sf(If)14 b(a)f(user)i(notices)g(something)f(o)q(dd,)f(who)h
(should)f(he)i(tell?)-1272 66 y(Ho)o(w)f(do)q(es)g(he)h(kno)o(w)e(this?)
-542 82 y @F5 @sf(Threats)h(and)h(Tips.)21 b @F9 @sf(What)13 b(should)h(y)o
(our)f(sta\013ers)i(do)e(if)f(they)i(rece)q(iv)o(e)g(a)f(threat)h(or)g(a)
-1329 50 y(tip-o\013)g(ab)q(out)f(a)h(breakin?)-535 82 y @F5 @sf(Press.)
19 b @F9 @sf(What)13 b(should)h(a)f(system)h(sta\013er)h(do)e(when)h(he)g
(receiv)o(es)h(a)f(call)e(from)h(the)h(press)-1327 50 y(asking)g(ab)q(out)f
(an)h(inciden)o(t)g(that)g(he,)g(himself)f(do)q(esn't)h(kno)o(w)g(ab)q
(out?)-1140 66 y(What)g(ab)q(out)g(when)g(there)h(is)f(a)f(real)h(inciden)o
(t)g(underw)o(a)o(y?)-1062 82 y @F5 @sf(Sh)o(u)o(tt)o(ing)g(Do)o(wn.)21 b
@F9 @sf(Under)12 b(what)f(circumstances)q 13 x(should)g(the)h(cen)o(ter)h
(b)q(e)f(sh)o(utdo)o(wn)g(or)-1329 50 y(remo)o(v)o(ed)i(from)f(the)i(net?)
-412 66 y(Who)f(can)g(mak)o(e)f(this)h(decision?)-529 66 y(When)g(should)g
(service)h(b)q(e)g(restored?)-712 82 y @F5 @sf(Prosecut)o(ion.)k @F9 @sf
(Under)c(what)f(circumstances)i(do)d(y)o(ou)h(plan)f(to)h(prosecute?)-1244
82 y @F5 @sf(Timestamps.)19 b @F9 @sf(Ho)o(w)14 b(can)g(y)o(ou)f(tell)h
(that)g(the)g(timestamps)g(ha)o(v)o(e)g(b)q(een)h(altered?)-1226 66 y
(What)f(should)f(y)o(ou)h(do)f(ab)q(out)h(it?)-551 66 y(W)m(ould)f
(running)g(NTP)i(\(the)f(net)o(w)o(ork)g(time)g(proto)q(cal\))g(help?)-1108
82 y @F5 @sf(Informin)o(g)h(the)f(Users.)20 b @F9 @sf(What)14 b(do)g(y)o
(ou)f(tell)g(the)i(users)g(ab)q(out)f(all)f(this?)-523 124 y(26)-999 b
26 @eop1
25 @bop0
@F5 @sf
[<
C00000E00000E000007000007000007000003800003800001C00001C00001C00000E00000E
00000E000007000007000003800003800003800001C00001C00001C00000E00000E00000E0
00007000007000003800003800003800001C00001C00001C00000E00000E00000700000700
000700000380000380000180>
17 41 -3 30 24] 47 @dc
@F5 @sf
[<
FFFFFC00FFFFFF000FC01FC00FC007E00FC007E00FC003F00FC003F00FC003F00FC003F00F
C003F00FC003E00FC007E00FC007C00FC00F800FFFFE000FC03F000FC00F800FC007C00FC0
07E00FC007E00FC007E00FC007E00FC007E00FC007C00FC00FC00FC01F80FFFFFF00FFFFF8
00>
28 28 -2 27 34] 66 @dc
[<
000700038000000700038000000F0003C000000F8007C000000F8007C000001FC00FE00000
1FC00FE000003FC00FF000003FE01FF000003F601FB000007F601FB800007E303F1800007E
303F180000FC387F0C0000FC187E0C0001FC187E0E0001F81CFE060001F80CFC060003F80C
FC070003F007F8030003F007F8030007E007F8018007E003F001800FE003F001C00FC007F0
00C00FC007E000C0FFFC7FFE0FFCFFFC7FFE0FFC>
46 28 -1 27 49] 87 @dc
25 @eop0
0 0 25 @bop1 365 307 a @F9 @sf(There)19 b(ha)o(v)o(e)e(b)q(een)h(cases)g
(where)h(bac)o(k)e(up)g(systems)i(returned)f(data)f(\014les)h(to)f(b)q(e)
-1328 50 y(publically)d(writeable)i(and)f(ob)o(vious)f(problems)i(ha)o(v)o
(e)f(ensued)i(from)d(it.)23 b(P)o(erhaps)-1328 50 y(as)18 b(seriously)m(,)h
(there)g(are)f(sites)h(that)f(ha)o(v)o(e)g(stored)h(all)d(of)i(the)g(bac)o
(k)g(up)g(data)g(in)-1329 50 y(a)d(publically)e(readable)j(form,)e
(including)f(the)j(data)f(that)g(w)o(as)g(protected)h(b)o(y)f(the)-1328
49 y(individual)d(user.)-383 78 y @F5 @sf(System)i(Sta\013)h(Errors.)20 b
@F9 @sf(Just)14 b(as)g(users)g(mak)o(e)f(mistak)o(es,)g(sta\013)h(mem)o(b)q
(ers)f(do)g(as)h(w)o(ell.)-1330 49 y(In)e(doing)f(so,)g(they)i(ma)o(y)d
(damage)h(user)i(\014les,)f(system)h(\014les)f(or)f(b)q(oth.)18 b(Unless)
12 b(there)-1327 50 y(is)19 b(a)f(cop)o(y)h(of)e(the)j(curren)o(t)g
(system)f(\014les,)h(the)f(sta\013)g(m)o(ust)f(restore)q 20 x(the)h
(system)-1328 50 y(\014les)c(from)e(the)h(original)e(distribution)h(and)h
(then)h(rebuild)e(all)g(of)g(the)i(site)f(sp)q(eci\014c)-1327 50 y(c)o
(hanges.)19 b(This)12 b(is)g(an)h(error)g(prone)g(pro)q(cess)q 14 x(and)f
(often)h(the)g(site)g(sp)q(eci\014c)h(c)o(hanges)-1328 50 y(including)h
(remo)o(ving)h(un)o(w)o(an)o(ted)g(debugging)f(features)i(that)f(p)q(ose)h
(securit)o(y)g(vul-)-1329 50 y(nerabilities.)-314 77 y @F5 @sf(Hardw)o
(are/Sof)o(t)o(w)o(are)d(F)l(ailures.)21 b @F9 @sf(Hardw)o(are)11 b(o)q
(ccassionally)f(fails.)16 b(If)11 b(the)g(only)g(cop)o(y)-1329 50 y(of)16 b
(the)g(data)g(is)g(on)g(a)g(disk)g(that)g(has)g(b)q(ecome)h(unreadable)g
(it)e(is)h(lost.)25 b(Soft)o(w)o(are)-1329 49 y(o)q(ccasionally)16 b
(fails.)25 b(Giv)o(en)16 b(a)g(serious)i(enough)f(error,)g(it)g(can)g(mak)o
(e)f(a)g(disk)h(un-)-1329 50 y(readable.)-267 77 y @F5 @sf(Securit)n(y)e
(Inciden)o(ts)o(.)20 b @F9 @sf(In)12 b(this)g(do)q(cumen)o(t,)h(our)f
(main)f(concern)j(is)e(with)g(securit)o(y)h(inci-)-1329 50 y(den)o(ts.)21 b
(In)14 b(determining)h(what)f(happ)q(en)h(and)f(correcting)i(it,)d(bac)o
(kups)i(are)g(essen-)-1327 50 y(tial.)-73 64 y(Basically)m(,)9 b(one)i(w)o
(ould)e(lik)o(e)h(to)g(return)h(ev)o(ery)g(\014le)f(to)g(the)h(state)g(b)q
(efore)g(the)f(inciden)o(t)-1328 49 y(except)18 b(for)d(those)i(that)f
(are)g(b)q(eing)g(mo)q(di\014ed)g(to)g(prev)o(en)o(t)g(future)h(inciden)o
(ts.)25 b(Of)-1329 50 y(course,)17 b(to)e(do)h(this,)f(one)h(needs)h(a)e
(cop)o(y)g(to)h(restore)h(from.)22 b(Naiv)o(ely)m(,)o 15 x(one)15 b(w)o
(ould)-1329 50 y(think)f(that)h(using)f(that)h(mo)q(di\014cation)e(date)i
(w)o(ould)f(allo)o(w)e(us)j(to)g(tell)f(whic)o(h)g(\014les)-1328 50 y
(need)g(to)f(b)q(e)h(up)q(dated.)19 b(This)13 b(is)g(of)f(course)j(not)e
(the)h(case.)k(The)c(clev)o(er)g(attac)o(k)f(will)-1330 50 y(mo)q(dify)g
(the)h(system)h(clo)q(c)o(k)f(and/or)f(the)i(timestamps)f(on)f(\014les)i
(to)e(prev)o(en)o(t)i(this.)-1305 63 y(In)f(man)o(y)f(attac)o(ks,)h(at)g
(one)g(the)g(follo)o(wi)o(ng)f(t)o(yp)q(es)h(of)g(\014les)g(are)g(mo)q
(di\014ed.)-1121 83 y @F7 @sf(\017)21 b @F9 @sf(The)14 b(system)h(binary)e
(that)h(con)o(trols)g(logging)e(in.)-831 60 y @F7 @sf(\017)21 b @F9 @sf
(The)14 b(system)h(authorization)e(\014le)h(lists)f(the)i(users)g(and)f
(their)g(privileges.)-1211 61 y @F7 @sf(\017)21 b @F9 @sf(The)14 b(system)h
(binary)e(that)h(con)o(trols)g(one)g(or)g(more)g(daemons.)-1041 61 y @F7 @sf
(\017)21 b @F9 @sf(The)14 b(accoun)o(ting)g(and)f(auditing)g(\014les.)-661
60 y @F7 @sf(\017)21 b @F9 @sf(User's)15 b(startup)f(\014les)g(and)g(p)q
(ermission)g(\014les.)-763 61 y @F7 @sf(\017)21 b @F9 @sf(The)14 b(system)h
(directory)f(w)o(alking)e(binary)m(.)-810 82 y(No)o(w)h(that)h(w)o(e)g
(understand)i(wh)o(y)d(w)o(e)h(need)h(bac)o(k)f(ups)g(in)g(order)g(to)g
(reco)o(v)o(er)-1278 106 y @F5 @sf(3.2.2)47 b(Ho)o(w)17 b(to)e(form)g(a)h
(Bac)o(k)g(Up)f(Strategy)g(that)f(W)l(orks)-1093 76 y @F9 @sf(There)h(are)f
(a)f(few)h(basic)g(rules)h(that)f(pro)o(vide)g(for)f(a)h(go)q(o)q(d)f(bac)o
(kup)h(strategy)m(.)-1175 77 y @F7 @sf(\017)20 b @F9 @sf(Ev)o(ery)15 b
(\014le)f(that)g(one)g(cares)h(ab)q(out)f(m)o(ust)f(b)q(e)i(included.)-940
77 y @F7 @sf(\017)20 b @F9 @sf(The)15 b(copies)f(m)o(ust)g(b)q(e)g(in)f
(non-v)o(olitil)o(e)g(form.)k(While)c(ha)o(ving)g(t)o(w)o(o)g(copies)i(of)e
(eac)o(h)-1328 50 y(\014le,)k(one)g(on)f(eac)o(h)i(of)e(t)o(w)o(o)g
(separate)i(disk)e(driv)o(es)h(is)g(go)q(o)q(d)f(for)g(protection)h(from)
-1329 50 y(simple)11 b(hardw)o(are)h(failures,)f(it)g(is)h(not)f(defense)i
(from)e(an)g(in)o(telligen)o(t)f(attac)o(k)o(er)j(that)-1329 50 y(will)f
(mo)q(dify)f(b)q(oth)i(copies,)g(of)f(from)g(a)h(clev)o(er)g(system)h
(sta\013er)g(who)e(sa)o(v)o(es)h(time)g(b)o(y)-1329 50 y(mo)q(difying)f
(them)i(b)q(oth)g(at)g(once.)50 124 y(25)-999 b
25 @eop1
24 @bop0
@F5 @sf
[<
03F80007FE001E0F003C07803C03C07803C07803E07803E0F803E0F803E0F803E0F803E0FC
03C0FC0380FA0780FB0E00F8F800F800007800007800003C03803C07C01E07C00F03C00781
8003FF00007E00>
19 27 -2 26 24] 54 @dc
@F5 @sf
[<
03800007C00007C00007C00007C00007C00007C00003C00003C00003C00003C00001C00001
E00000E00000E000006000003000003000C01800C00C00C00600E003007FFF807FFF807FFF
C07FFFE07FFFE0600000>
19 28 -3 27 24] 55 @dc
24 @eop0
0 0 24 @bop1 262 307 a @F9 @sf(is)17 b(imp)q(ortan)o(t)f(for)h(the)g
(appropriate)h(p)q(eople)f(within)g(the)g(organization)f(to)h(b)q(e)h
(briefed)-1431 50 y(on)d(the)i(situation.)24 b(It)16 b(is)g(em)o
(barrising)f(to)h(\014nd)g(out)g(ab)q(out)g(an)g(inciden)o(t)g(in)g(one's)g
(o)o(wn)-1432 50 y(organization)c(from)h(a)h(rep)q(orter's)h(phone)g
(call.)-756 108 y @F5 @sf(3.1.6)63 b(Finding)15 b(out)g(who)h(did)f(it)-637
76 y @F9 @sf(This)f(goal)f(is)h(often)g(o)o(v)o(er)g(emphasized.)20 b
(There)c(is)e(de\014nitely)g(a)g(v)n(alue)g(in)g(kno)o(wing)f(who)-1432
50 y(the)k(attac)o(k)o(er)h(w)o(as)f(so)g(that)g(one)h(can)f(debrief)h
(him)e(and)h(discourage)h(him)e(from)g(doing)-1432 50 y(suc)o(h)e(things)g
(in)f(the)i(future.)-397 50 y(In)h(the)h(a)o(v)o(erage)g(case,)h(it)e
(e\013ort)h(to)f(determine)i(the)f(attac)o(k)o(ers)g(iden)o(tit)o(y)f
(than)h(it)f(is)-1432 50 y(w)o(orth)d(unless)i(one)f(plans)g(to)g
(prosecute)h(him.)-743 107 y @F5 @sf(3.1.7)47 b(Punishing)14 b(the)h
(attac)o(k)o(ers)-641 77 y @F9 @sf(This)d(merits)h(of)f(this)h(goal)f(ha)o
(v)o(e)g(b)q(een)i(seriously)f(debated)h(in)e(the)i(past)f(few)f(y)o
(ears.)19 b(As)13 b(a)-1432 50 y(practical)d(matter)h(it)g(is)g(v)o(ery)g
(di\016cult)f(to)h(get)g(enough)g(evidence)h(to)f(prosecute)q(r)h(someone)
-1431 50 y(and)k(v)o(ery)g(few)g(succe)q(sful)h(prosecutions.)26 b(If)16 b
(this)g(is)g(a)g(one)g(of)g(the)h(goals,)e(v)o(ery)h(careful)-1431 50 y
(record)11 b(k)o(eeping)f(needs)h(to)f(b)q(e)h(done)f(at)g(all)f(times)h
(during)g(the)h(in)o(v)o(estigation,)o 10 x(and)f(solving)-1433 49 y(the)h
(problem)h(will)d(b)q(e)j(slo)o(w)o(ed)g(do)o(wn)f(as)g(one)h(w)o(aits)f
(for)g(phone)g(traces)i(and)e(v)n(arious)g(court)-1431 50 y(orders.)-122
116 y @F2 @sf(3.2)55 b(Bac)n(kups)-331 77 y @F9 @sf(It)16 b(should)h(b)q
(e)g(clear)g(that)g(accomplishing)f(most)g(of)g(the)i(goals)e(requires)h
(ha)o(ving)f(extra)-1431 50 y(copies)g(of)f(the)i(data)f(that)g(is)g
(stored)h(on)e(the)i(system.)25 b(These)17 b(extra)g(copies)f(are)h
(called)-1432 50 y(\\Bac)o(kups")d(and)f(generally)h(stored)h(on)e
(magnetic)h(tap)q(e.)-853 49 y(Let)f(us)f(consider)i(t)o(w)o(o)e(asp)q
(ects)i(of)e(k)o(eeping)g(bac)o(kup)h(copies)g(of)e(y)o(our)i(data.)k
(First,)12 b(w)o(e)-1431 50 y(will)f(lo)q(ok)h(at)g(wh)o(y)h(this)f(imp)q
(ortan)o(t)g(and)h(what)g(the)g(bac)o(kups)g(are)g(used)h(for)e(and)h
(then)g(w)o(e)-1431 50 y(will)f(examine)i(the)g(c)o(harateristics)h(of)e
(a)h(go)q(o)q(d)g(bac)o(kup)g(strategy)m(.)-1047 108 y @F5 @sf(3.2.1)47 b
(Wh)o(y)16 b(W)l(e)g(Need)g(Bac)o(k)g(Ups)-669 77 y @F9 @sf(Go)q(o)q(d)c
(bac)o(k)g(ups)h(are)g(needed)i(for)d(four)g(t)o(yp)q(es)i(of)e(reasons.)
18 b(The)c(\014rst)f(three)h(of)e(these)i(are)-1431 49 y(not)g(securit)o
(y)h(related)g(p)q(er)g(se,)f(though)g(an)g(insu\016cein)o(t)h(bac)o(k)f
(up)g(strategy)h(will)e(lead)h(to)-1432 50 y(problems)f(with)h(these)h
(\014rst)g(three)g(as)f(w)o(ell.)-642 50 y(If)h(a)f(site)i(do)q(es)g(not)f
(ha)o(v)o(e)g(a)g(reliable)g(bac)o(k)g(up)g(system,)h(when)f(an)g(inciden)o
(t)h(o)q(ccurs,)-1431 50 y(one)j(m)o(ust)g(seriously)g(consider)h
(immediate)e(sh)o(utdo)o(wn)h(of)g(the)h(system)f(so)h(as)f(not)g(to)-1432
50 y(endanger)14 b(the)h(user)g(data.)-430 91 y @F5 @sf(User)g(Errors.)20 b
@F9 @sf(Ev)o(ery)13 b(once)g(in)f(a)g(while,)f(a)i(user)g(delete)h(a)e
(\014le)g(or)g(o)o(v)o(erwrites)i(data)e(and)-1329 50 y(then)g(realizes)g
(that)g(he)g(needs)g(it)f(bac)o(k.)17 b(In)12 b(some)f(op)q(erating)g
(systems,)i(\\undelete")-1328 50 y(facilities)h(or)h(v)o(ersion)g(n)o(um)o
(b)q(ering)f(is)h(enough)g(to)f(protect)i(him,)e(if)g(he)h(notices)h(his)
-1329 49 y(mistak)o(e)d(quic)o(kly)g(enough.)18 b(Sometimes)13 b(he)h(do)q
(esn't)h(notice)e(the)i(error)f(for)f(a)h(long)-1330 50 y(time,)g(or)g
(deletes)h(all)e(of)h(the)g(v)o(ersions,)h(or)f(expunges)h(them)f(and)g
(then)h(w)o(an)o(ts)f(the)-1328 50 y(data)g(bac)o(k.)-190 66 y(If)j(there)i
(is)e(no)g(bac)o(kup)h(system)g(at)f(all,)g(the)h(users)h(data)e(is)g
(just)g(plain)g(lost.)28 b(If)-1329 50 y(there)19 b(is)e(a)g(p)q(erfect)i
(bac)o(kup)e(system,)i(he)f(quic)o(kly)e(is)h(able)g(to)h(reco)o(v)o(er)g
(from)f(his)-1329 50 y(mistak)o(e.)i(If)c(there)g(is)g(a)f(p)q(o)q(or)g
(bac)o(k)h(up)f(system,)h(his)f(data)g(ma)o(y)g(b)q(e)h(reco)o(v)o(ered)h
(in)-1329 50 y(a)e(corrupted)h(form)e(or)h(with)g(incorrect)h(p)q
(ermission)f(set)h(on)e(it.)-418 134 y(24)-999 b
24 @eop1
23 @bop0
23 @eop0
0 0 23 @bop1 262 307 a @F9 @sf(from)8 b(air)h(conditioning)f(problems,)i
(one)g(from)f(programmer)g(error.)17 b(A)o(t)10 b(all)e(three)j(cen)o
(ters)q(,)-1431 50 y(there)h(w)o(ere)f(mac)o(hines)g(with)f(irreplacable)h
(scien)o(ti\014c)h(data)e(that)h(had)g(nev)o(er)g(b)q(een)h(bac)o(k)o(ed)
-1431 50 y(up)h(in)h(their)g(liv)o(es.)-236 50 y(Man)o(y)e(bac)o(kup)g
(failures)g(are)h(caused)h(b)o(y)e(more)g(subbtle)h(problems)f(than)h
(these.)19 b(Still)-1433 49 y(it)11 b(is)i(instructiv)o(e)f(to)h(note)f
(that)h(man)o(y)e(sites)i @F6 @sf(never)k @F9 @sf(mak)o(e)12 b(a)f(second)j
(cop)o(y)e(of)g(their)g(data.)-1432 50 y(This)e(means)g(than)h(an)o(y)f
(problem)g(from)f(a)h(defectiv)o(e)i(disk)e(driv)o(e,)g(to)h(a)f(w)o(ater)g
(main)g(break,)-1432 50 y(to)j(a)h(t)o(yping)f(mistak)o(e)g(when)i(up)q
(dating)e(system)i(soft)o(w)o(are)f(can)g(sp)q(ell)g(disaster.)-1212 50 y
(If)f(the)g(primary)g(goal)f(is)h(that)g(of)f(main)o(taining)f(and)i
(restoring)h(data,)e(the)i(\014rst)g(thing)-1432 50 y(to)e(do)g(during)g
(an)h(inciden)o(t)f(needs)i(to)e(b)q(e)i(to)e(c)o(hec)o(k)h(when)g(the)h
(most)e(recen)o(t)i(bac)o(kup)f(w)o(as)-1432 49 y(completed.)29 b(If)17 b
(it)g(w)o(as)g(not)h(done)f(v)o(ery)h(recen)o(tly)m(,)h(an)e(immediate)f
(full)h(system)h(dump)-1432 50 y @F6 @sf(must)11 b @F9 @sf(b)q(e)i(made)e
(and)h(the)h(system)f(m)o(ust)g(b)q(e)h(sh)o(utdo)o(wn)f(un)o(til)f(it)g
(is)h(done.)17 b(Of)12 b(course,)h(one)-1431 50 y(can't)g(trust)i(this)f
(dump)g(as)g(the)g(attac)o(k)o(er)h(ma)o(y)d(ha)o(v)o(e)i(already)g(mo)q
(di\014ed)f(the)i(system.)-1395 108 y @F5 @sf(3.1.2)47 b(Main)o(taining)
15 b(and)h(restorin)o(g)f(service)-850 77 y @F9 @sf(Second)h(to)f(main)o
(taining)o 14 x(the)i(data,)e(main)o(taini)o(ng)f(service)j(is)e(imp)q
(ortan)o(t.)23 b(Users)17 b(ha)o(v)o(e)-1432 49 y(probably)c(come)i(to)f
(rely)h(on)f(the)h(computing)f(cen)o(ter)i(and)f(will)e(not)h(b)q(e)h
(pleased)g(if)f(they)-1431 50 y(can't)f(con)o(tin)o(ue)h(to)g(use)h(it)e
(as)h(planned.)-639 108 y @F5 @sf(3.1.3)47 b(Figuring)15 b(ho)o(w)h(it)f
(happ)q(enned)o -714 77 a @F9 @sf(This)d(is)h(b)o(y)g(far)f(the)i(most)f
(in)o(teresting)g(part)g(of)f(the)i(problem)e(and)h(in)g(practice)h(seems)g
(to)-1432 50 y(tak)o(e)e(preciden)o(t)i(o)o(v)o(er)f(all)e(of)h(the)h
(others.)19 b(It)12 b(of)g(course)i(strongly)e(con\015icts)i(with)e(the)h
(t)o(w)o(o)-1432 49 y(preceeding)i(goals.)-246 50 y(By)e(immediately)e
(making)h(a)g(complete)i(cop)o(y)f(of)f(the)h(system)h(after)f(the)h
(attac)o(k,)e(one)-1431 50 y(can)i(analyze)h(it)f(at)h(one's)g(leisure.)
21 b(This)15 b(means)g(that)f(w)o(e)h(don't)g(need)g(to)g(w)o(orry)g(ab)q
(out)-1432 50 y(normal)k(use)h(destro)o(ying)h(evidence)g(of)e(ab)q(out)h
(the)h(attac)o(k)o(er)g(re-en)o(tering)g(to)f(destro)o(y)-1431 50 y
(evidence)15 b(of)e(what)h(happ)q(enned.)-464 49 y(Ultimately)m(,)o 10 x
(one)e(ma)o(y)e(nev)o(er)i(b)q(e)g(able)f(to)g(determine)h(ho)o(w)f(it)f
(happ)q(enned.)19 b(One)12 b(ma)o(y)-1433 50 y(\014nd)j(sev)o(eral)h(w)o
(a)o(ys)g(that)g(\\could)f(ha)o(v)o(e)g(happ)q(enned")i(presen)o(ting)f(a)g
(n)o(um)o(b)q(er)g(of)f(things)-1432 50 y(to)e(\014x.)-107 108 y @F5 @sf
(3.1.4)47 b(Av)o(oiding)16 b(the)e(F)l(uture)h(Inciden)o(t)o(s)g(and)g
(Escalation)-1098 77 y @F9 @sf(This)f(needs)i(to)f(b)q(e)g(an)f(explicit)h
(goal)e(and)i(often)f(is)h(not)f(realized)h(un)o(til)f(m)o(uc)o(h)h(to)q
(o)f(late.)-1432 49 y(T)m(o)j(a)o(v)o(oid)g(future)i(inciden)o(ts)g(one)g
(of)f(course)i(should)e(\014x)g(the)h(problem)g(that)f(\014rst)h(o)q(c-)
-1431 50 y(curred)e(and)f(remo)o(v)o(e)g(an)o(y)f(new)i(securit)o(y)g
(vulnerabiliti)o(es)f(that)g(w)o(ere)h(added)f(either)h(b)o(y)-1432 50 y
(the)f(attac)o(k)o(ers)g(or)f(b)o(y)h(the)g(system)g(sta\013)g(while)f
(trying)g(to)h(\014gure)g(out)f(what)g(w)o(as)h(going)-1433 50 y(on.)6 50 y
(Bey)o(ond)h(this,)g(one)g(needs)h(to)e(prev)o(en)o(t)i(turning)e(a)h
(casual)f(attac)o(k)o(er)i(who)e(ma)o(y)g(not)-1432 49 y(b)q(e)i(caugh)o
(t)f(in)o(to)g(dedicate)h(opp)q(onen)o(t,)h(to)e(prev)o(en)o(t)i(en)o
(ticing)e(other)h(attac)o(k)o(ers)g(and)g(to)-1432 50 y(prev)o(en)o(t)12 b
(others)g(in)f(one's)h(organization)e(and)h(related)h(organizations)f
(from)g(b)q(eing)g(forced)-1431 50 y(to)i(in)o(tro)q(duce)i(restrictions)g
(that)f(w)o(ould)f(b)q(e)i(neither)f(p)q(opular)g(nor)g(helpful.)-1222 108 y
@F5 @sf(3.1.5)47 b(Av)o(oiding)16 b(lo)q(oking)g(fo)q(olish)-652 77 y
@F9 @sf(Another)h(real)f(w)o(orld)g(consideration)h(that)f(I)h(had)f(not)g
(exp)q(ecte)q(d)i(to)e(b)q(ecome)i(an)e(issue)-1431 49 y(is)h(one)h(of)f
(image)f(managemen)o(t.)28 b(In)18 b(practice,)h(it)e(is)h(imp)q(ortan)o
(t)e(not)i(to)f(lo)q(ok)g(fo)q(olish)-1433 50 y(in)f(the)h(press,)h(an)f
(issue)g(that)g(w)o(e)g(will)e(discuss)j(more)f(fully)e(in)i(an)f(app)q
(endix.)26 b(Also)17 b(it)-737 151 y(23)-999 b
23 @eop1
22 @bop0
@F1 @sf
[<
00FF800007FFF0001FFFFC003F01FE007C007F007E007F80FF007FC0FF003FC0FF003FE0FF
003FE07E003FE03C003FE000003FE000003FE000003FC000003FC000007F8000007F000000
7E000001FC0000FFF00000FFC0000007F0000001F8000001FC000000FE000000FF000000FF
000F007F801F807F803F807F803F807F803F807F803F80FF001F00FF000F81FE0007FFFC00
03FFF000007F8000>
27 39 -3 38 34] 51 @dc
[<
FFFF80FFFF80FFFF80FFFF80FFFF80FFFF80>
17 6 -1 16 23] 45 @dc
@F9 @sf
[<
00000F0000001F8000003FC000003FC0000038E00000306000006020003FE02000F0E02003
A0780007205C000E208E001C1107003C0E078038000380780003C0780003C0700001C0F000
01E0F00001E0F00001E0F00001E0F00001E0F00001E0F00001E0F00001E0700001C0780003
C0780003C0380003803C0007801C0007000E000E0007001C000380380000E0E000003F8000
>
27 37 -2 28 32] 81 @dc
22 @eop0
0 0 22 @bop1 262 307 a @F1 @sf(3)69 b(Pre-Planning)24 b(y)n(our)g(Inciden)n
(t)e(Handling)-1223 99 y @F2 @sf(3.1)55 b(Goals)-264 77 y @F9 @sf(Despite)
17 b(y)o(our)g(b)q(est)h(plans)f(to)g(a)o(v)o(oid)f(inciden)o(ts)h(they)h
(ma)o(y)e(v)o(ery)h(w)o(ell)g(o)q(ccur.)28 b(Prop)q(er)-1430 50 y
(planning)16 b(can)i(reduce)h(their)f(serv)o(er)q(it)o(y)m(,)g(cost)h(and)e
(incon)o(v)o(enience)i(lev)o(els.)29 b(There)19 b(are)-1431 50 y(ab)q(out)
13 b(half)g(dozen)i(di\013eren)o(t)g(goals)e(that)h(one)g(can)g(ha)o(v)o
(e)f(while)h(handling)e(an)i(inciden)o(t.)-1366 91 y(1.)20 b(Main)o(tain)
13 b(and)h(restore)h(data.)-541 83 y(2.)20 b(Main)o(tain)13 b(and)h
(restore)h(service.)-580 83 y(3.)20 b(Figure)14 b(out)g(ho)o(w)g(it)f
(happ)q(enned.)-594 83 y(4.)20 b(Av)o(oid)13 b(the)i(future)f(inciden)o
(ts)h(and)e(escalation.)-814 83 y(5.)20 b(Av)o(oid)13 b(lo)q(oking)g(fo)q
(olish.)-451 83 y(6.)20 b(Find)14 b(out)g(who)f(did)h(it.)-425 83 y(7.)20 b
(Punish)14 b(the)h(attac)o(k)o(ers.)-426 91 y(The)k(order)g(sho)o(wn)f(ab)q
(o)o(v)o(e)h(is)f(what)g(I)h(b)q(eliev)o(e)f(the)i(order)f(of)f
(priorities)g(generally)-1432 50 y(should)10 b(b)q(e.)17 b(Of)10 b(course)i
(in)e(a)g(real)g(situation)f(there)j(are)f(man)o(y)e(reasons)i(wh)o(y)f
(this)g(ordering)-1431 50 y(migh)o(t)k(not)i(b)q(e)h(appropriate)f(and)g
(w)o(e)g(will)f(discuss)i(the)f(whens)h(and)f(wh)o(y)g(of)f(c)o(hanging)
-1432 50 y(our)e(priorities)h(in)g(the)g(next)g(section.)-536 50 y(F)m(or)i
(an)o(y)h(giv)o(en)f(site,)i(one)f(can)g(exp)q(ect)i(that)e(a)g(standard)g
(goal)f(prioritization)f(can)-1431 49 y(b)q(e)g(dev)o(elop)q(ed.)21 b
(This)15 b(should)f(b)q(e)i(done)f(in)f(adv)n(ance.)21 b(There)16 b(is)e
(nothing)g(so)h(terrible)g(as)-1431 50 y(b)q(eing)e(alone)g(in)g(a)g @F6 @sf
(c)n(old)18 b @F9 @sf(mac)o(hine)13 b(ro)q(om)g(at)h(4)f(on)g(a)g(Sunda)o
(y)h(morning)e(trying)h(to)h(decide)-1431 50 y(whether)h(to)e(sh)o(ut)i
(do)o(wn)e(the)h(last)g(hole)g(to)f(protect)i(the)g(system)f(or)g(try)g
(to)g(get)g(a)f(phone)-1431 50 y(trace)h(done)f(to)h(catc)o(h)g(the)f
(attac)o(k)o(er.)19 b(It)13 b(is)g(similarly)f(di\016cult)g(to)h(decide)i
(in)d(the)i(middle)-1432 50 y(of)j(a)g(disaster)i(whether)g(y)o(ou)e
(should)h(sh)o(ut)g(do)o(wn)f(a)h(system)g(to)g(protect)h(the)f(existing)
-1432 50 y(data)13 b(or)h(do)g(ev)o(erything)g(y)o(ou)f(can)h(to)g(con)o
(tin)o(ue)g(to)g(pro)o(vide)f(service.)-1046 49 y(No)q(one)f(who)g(is)h
(handling)e(the)i(tec)o(hnical)f(side)h(of)e(an)i(inciden)o(t)f(w)o(an)o
(ts)g(to)g(mak)o(e)g(these)-1430 50 y(p)q(olicy)20 b(decisions)h(without)f
(guidance)h(in)f(the)i(middle)e(of)g(a)g(disaster.)40 b(One)21 b(can)g(b)q
(e)-1431 50 y(sure)16 b(that)g(these)h(decisions)f(will)e(b)q(e)i(repla)o
(y)o(ed)f(an)h(re-analyzed)g(b)o(y)f(a)g(dozen)h(\\Monda)o(y)-1432 50 y
(Morning)11 b(Quarterbac)o(ks")i(who)f(will)e(explain)h(what)h(should)g
(ha)o(v)o(e)g(b)q(een)h(done)f(could)g(not)-1432 50 y(b)q(e)i(b)q(othered)h
(to)f(mak)o(e)f(up)h(a)g(set)h(of)e(guidelines)h(b)q(efore.)-848 49 y(Let)g
(us)g(lo)q(ok)f(at)h(eac)o(h)g(of)g(these)h(goals)e(in)h(a)f(little)g
(more)h(detail.)-1081 108 y @F5 @sf(3.1.1)47 b(Main)o(taining)15 b(and)h
(restorin)o(g)f(data)-800 77 y @F9 @sf(T)m(o)g(me,)i(the)g(user)h(data)e
(is)g(of)g(paramoun)o(t)g(imp)q(ortance.)26 b(An)o(ything)16 b(else)i(is)e
(generally)-1432 50 y(replacable.)35 b(Y)m(ou)19 b(can)h(buy)g(more)f
(disk)h(driv)o(es,)h(more)f(computers,)h(more)f(electrical)-1431 50 y(p)q
(o)o(w)o(er.)e(If)13 b(y)o(ou)h(lose)g(the)g(data,)f(though)h(a)g(securit)o
(y)g(inciden)o(t)g(or)g(otherwise,)h(it)e(is)h(gone.)-1367 49 y(Of)k
(course,)j(if)d(the)h(computer)h(is)e(con)o(trolling)f(a)i(ph)o(ysical)f
(device,)i(there)g(ma)o(y)e(b)q(e)-1431 50 y(more)f(than)g(just)h(data)f
(at)h(stak)o(e.)29 b(F)m(or)17 b(example,)h(the)g(most)f(imp)q(ortan)o(t)g
(goal)f(for)h(the)-1431 50 y(computer)d(in)g(P)o(acemak)o(er)g(is)g(to)f
(get)i(the)f(next)g(pulse)h(out)f(on)f(time.)-1037 50 y(In)j(terms)h(of)e
(the)h(protection)h(of)e(user)i(data,)f(there)h(is)f @F6 @sf(nothing)21 b
@F9 @sf(that)16 b(can)g(tak)o(e)g(the)-1431 50 y(place)10 b(of)g(a)g(go)q
(o)q(d)g(bac)o(k-up)g(strategy)m(.)17 b(During)10 b(the)h(w)o(eek)g(that)f
(this)h(c)o(hapter)g(w)o(as)g(written,)-1432 49 y(three)j(cen)o(ters)h
(that)e(I)f(w)o(ork)h(with)g(su\013ered)h(catastrophic)g(data)e(loss.)18 b
(Tw)o(o)12 b(of)h(the)g(three)-735 147 y(22)-999 b
22 @eop1
21 @bop0
@F4 @sf
[<
7FC7F0FFE7F87FC7F00E03800E03800E03800E03800E03800E03800E03800E03800E03800E
03800F03800F87800FFF000EFE000E3C000E00000E00000E00000E00007E0000FE00007E00
00>
21 25 0 24 22] 104 @dc
[<
003FE0007FF0003FE000070000070000070000070000070000070007C7001FE7003FF7003C
3F00700F00700F00E00700E00700E00700E00700E00700E00700700F00700F003C1F001FF7
000FE70007C700>
20 27 -2 17 22] 113 @dc
@F2 @sf
[<
180FC0001C3FF8001EE07C001FC03E001F801F001F001F801F000F801F000FC01F000FC01F
000FC01F000FC01F000FC01F000FC01F000FC01F000FC01F000F801F000F801F001F001F80
1E001FF07C001F3FF8001F0FE0001F0000001F0000001F0000001F0000001F0000001F0000
001F0000001F0000001F0000001F0000001F000000FF000000FF000000>
26 35 -2 34 31] 98 @dc
@F2 @sf
[<
001FFFF000001FFFF0000000FE00000000FE00000000FE00000000FE00000000FE00000000
FE00000000FE00000000FE00000000FE00000000FE00000000FE00000000FE00000001FE00
000001FF00000003FF80000003FD80000007F8C000000FF0E000000FF06000001FE0700000
3FC03000003FC01800007F801C0000FF000C0000FF00060001FE00070001FE00030003FC00
018007F80001C007F80000C0FFFF800FFEFFFF800FFE>
39 34 -1 33 42] 89 @dc
21 @eop0
0 0 21 @bop1 262 307 a @F2 @sf(2.13)55 b(.rhosts)18 b(and)i(pro)n(xy)e
(logins)-745 77 y @F9 @sf(Just)c(as)f(some)g(p)q(eople)h(trust)g(eac)o(h)g
(other,)g(some)f(accoun)o(ts)h(trust)h(eac)o(h)e(other)h(and)f(some)-1431
50 y(mac)o(hines)h(trust)i(eac)o(h)f(other.)21 b(There)16 b(are)f(sev)o
(eral)h(mec)o(hanism)e(for)g(setting)h(up)g(a)g(trust)-1431 49 y
(relationship.)i(Among)c(these)i(are)g @F4 @sf(hosts.equ)o(iv)p @F9 @sf(,)o
13 x @F4 @sf(.rhosts)p @F9 @sf(,)o 13 x(and)e(pro)o(xy)h(logins.)-1257 50 y
(These)21 b(mec)o(hanisms)f(essen)o(tially)f(allo)o(w)g(a)g(user)i(to)f
(login)e(from)h(one)h(mac)o(hine)g(to)-1432 50 y(another)14 b(without)f(a)h
(passw)o(ord.)k(There)d(are)g(three)g(basic)f(implicatio)o(ns)f(to)h
(this.)-1249 91 y(1.)20 b(If)14 b(y)o(ou)f(can)h(imp)q(ersonate)g(a)f(mac)o
(hine,)g(y)o(ou)h(can)f(gain)g(access)q 15 x(to)g(other)h(mac)o(hines)-1328
50 y(without)g(ha)o(ving)f(to)g(pro)o(vide)h(passw)o(ords)h(or)f(\014nd)g
(bugs.)-965 83 y(2.)20 b(Once)c(y)o(ou)f(get)g(access)h(to)f(one)g(accoun)o
(t)g(on)g(one)g(mac)o(hine,)f(y)o(ou)h(are)g(lik)o(ely)e(to)i(b)q(e)-1328
50 y(able)f(to)g(reac)o(h)g(man)o(y)f(other)i(accoun)o(ts)g(on)e(other)i
(mac)o(hines.)-1036 83 y(3.)20 b(If)10 b(y)o(ou)g(gain)f(con)o(trol)h(of)g
(a)g(mac)o(hine,)g(y)o(ou)g(ha)o(v)o(e)g(gained)g(access)i(to)e(all)f(the)h
(mac)o(hines)-1328 50 y(that)k(trusts)h(it.)-289 91 y(V)m(arious)e(exp)q
(erimen)o(ts)i(ha)o(v)o(e)f(sho)o(wn)g(that)g(b)o(y)f(starting)h @F6 @sf
(almost)h(anywher)n(e)g(inter)n(est-)-1433 50 y(ing)p @F9 @sf(,)h(once)g
(one)g(has)h(con)o(trol)e(of)h(one)g(medium)f(size)i(mac)o(hine,)f(one)g
(can)g(gain)f(access)j(to)-1432 50 y(tens)e(of)f(thousands)h(of)f
(computers.)25 b(In)16 b(m)o(y)e(most)i(recen)o(t)h(exp)q(erimen)o(t,)g
(starting)e(from)-1432 50 y(a)f(medium)f(size)j(timesharing)d(system,)i(I)g
(gained)f(immediate)f(access)q 16 x(to)h(150)f(mac)o(hines)-1431 49 y(and)k
(surpassed)i(5000)d(distinct)i(mac)o(hines)f(b)q(efore)h(completing)f(the)h
(second)g(recurs)q(ion)-1431 50 y(step.)-85 116 y @F2 @sf(2.14)55 b
(Debugging)-417 77 y @F9 @sf(Ab)q(out)19 b(one)h(third)g(of)f(the)h
(securit)o(y)g(holes)g(that)g(I)f(ha)o(v)o(e)g(come)h(across)h(dep)q(end)g
(on)e(a)-1432 50 y(debugging)10 b(option)h(b)q(eing)h(enabled.)17 b(When)
12 b(installing)d(system)k(soft)o(w)o(are,)e(alw)o(a)o(ys)g(c)o(hec)o(k)
-1431 50 y(that)i(all)g(the)i(\\debugging")d(options)i(that)g(y)o(ou)f
(are)i(not)e(using)h(are)g(disabled.)-1253 116 y @F2 @sf(2.15)55 b
(Getting)18 b(P)n(eople)g(Mad)h(at)g(Y)-5 b(ou)-837 76 y @F9 @sf(It)16 b
(is)h(sad)g(but)g(true)h(that)f(a)f(small)g(n)o(um)o(b)q(er)h(of)f(sites)i
(ha)o(v)o(e)e(gotten)h(groups)g(of)g(hac)o(k)o(ers)-1431 50 y(angry)11 b
(at)h(them.)18 b(In)12 b(at)g(least)g(t)o(w)o(o)g(cases,)h(this)g(w)o(as)f
(b)q(ecause)h(the)g(hac)o(k)o(ers)g(had)f(found)g(an)-1432 50 y(in)o
(teresting)k(securit)o(y)g(hole,)f(had)h(tried)g(to)f(con)o(tact)h(the)h
(administrators)e(of)g(the)h(cen)o(ter)-1430 50 y(and)d(w)o(ere)i(giv)o
(en)e(a)h(hard)g(time)g(when)g(they)g(w)o(ere)h(seriously)f(trying)g(to)f
(help.)-1178 50 y(When)d(one)g(is)f(giv)o(en)g(a)h(\\tip")e(from)h
(someone)h(that)g(w)o(on't)f(iden)o(tify)g(themselv)o(es)i(ab)q(out)-1432
50 y(a)h(securit)o(y)j(problem,)d(it)h(is)g(generally)g(w)o(orth)g(in)o(v)o
(estigating.)j(It)e(is)f(not)g(w)o(orth)g(trying)g(to)-1432 49 y(tric)o(k)f
(the)g(informan)o(t)f(in)o(to)g(giving)f(his)i(phone)g(n)o(um)o(b)q(er)g
(to)g(y)o(ou.)17 b(It)12 b(almost)f(nev)o(er)i(w)o(orks,)-1432 50 y(and)f
(it)h(is)g(the)g(\\t)o(yp)q(e)h(of)e(dirt)o(y)h(tric)o(k")f(that)i(will)d
(probably)h(get)i(p)q(eople)f(mad)f(at)h(y)o(ou)g(and)-1432 50 y(at)g(the)i
(v)o(ery)f(least)g(prev)o(en)o(t)h(y)o(ou)e(from)g(getting)h(early)g(w)o
(arnings)f(in)h(the)g(future.)-599 576 y(21)-999 b
21 @eop1
20 @bop0
@F5 @sf
[<
1F8070E0F8F0F878F87C707C007C007C007C007C007C007C007C007C007C007C007C007C00
7C007C007C007C007C007C03FC03FC000000000000000000000000007800FC00FC00FC00FC
0078>
14 38 3 29 15] 106 @dc
@F5 @sf
[<
FFFF007C0F007E07003E03001F03801F81800F818007C18007E00003F00001F00060F80060
FC00607C00303E00303F003C1F003FFF80>
17 18 -1 17 21] 122 @dc
20 @eop0
0 0 20 @bop1 262 307 a @F9 @sf(routine)14 b(use)h(and)f(one)h(for)f
(privileged)g(access)i(with)e(a)g(hop)q(e)h(that)f(they)h(will)e(only)h
(share)-1431 50 y(the)g(former)g(with)f(their)i(secretary)m(.)-568 108 y
@F5 @sf(2.11.3)47 b(T)l(ro)s(jan)15 b(Horses)-466 77 y @F9 @sf(Ha)o(ving)
9 b(an)i(\\unsupp)q(orted")h(or)f(\\public")e(area)j(on)e(disk)h(where)h
(users)g(place)f(binaries)g(for)-1432 49 y(common)g(use)j(simpli\014es)e
(the)i(placemen)o(t)f(of)f(T)m(ro)r(jan)g(horse)i(programs.)j(Ha)o(ving)
12 b(sev)o(eral)-1431 50 y(areas)g(for)g(user)h(main)o(tained)e(binaries)i
(and)f(a)g(single)f(user)j(resp)q(onsible)f(for)f(eac)o(h)h(reduces)-1430
50 y(but)h(do)q(es)g(not)g(eliminate)f(this)h(problem.)-664 108 y @F5 @sf
(2.11.4)47 b(Wizards)-341 76 y @F9 @sf(Wizards)12 b(and)g(system)h
(programmers)f(often)h(add)f(their)h(o)o(wn)e(secur)q(it)o(y)i(problems.)k
(They)-1431 50 y(are)e(often)f(the)i(ones)f(to)g(create)h(privileged)e
(programs)h(that)g(are)g(needed)h(and)f(then)g(for-)-1432 50 y(gotten)h
(ab)q(out)h(without)f(b)q(eing)h(disabled.)26 b(Thinking)15 b(that)i(an)f
(accoun)o(t)h(do)q(esn't)h(need)-1431 50 y(to)12 b(b)q(e)i(c)o(hec)o(k)o
(ed/audited)g(b)q(ecause)g(it)f(is)f(o)o(wned)h(b)o(y)g(someone)g(that)g
(should)g(kno)o(w)f(b)q(etter)-1430 50 y(than)h(to)h(mak)o(e)f(a)h(silly)f
(mistak)o(e)g(is)h(a)g(risky)f(p)q(olicy)m(.)-825 108 y @F5 @sf(2.11.5)47 b
(F)l(unders)-337 76 y @F9 @sf(F)m(unders)14 b(are)g(often)g(giving)e
(accoun)o(ts)i(on)g(the)g(mac)o(hines)g(that)g(they)g(\\paid)f(for.")k
(All)c(to)-1432 50 y(often)e(these)h(accoun)o(ts)g(are)g(nev)o(er)g(used)g
(but)f(not)g(disabled)g(ev)o(en)h(though)f(they)g(are)h(found)-1432 50 y
(to)j(b)q(e)h(dorman)o(t)f(b)o(y)g(the)i(pro)q(cedures)g(discusse)q(d)g
(ab)q(o)o(v)o(e.)23 b(Again,)14 b(this)i(is)f(a)h(mistak)o(e)f(to)-1432
50 y(b)q(e)f(a)o(v)o(oided.)-206 116 y @F2 @sf(2.12)55 b(Group)19 b
(Accoun)n(ts)-555 76 y @F9 @sf(A)13 b(group)h(accoun)o(t)g(is)g(one)g
(that)f(is)h(shared)g(among)f(sev)o(eral)h(p)q(eople)g(in)g(suc)o(h)g(a)g
(w)o(a)o(y)f(that)-1432 50 y(one)g(can't)g(tell)g(whic)o(h)g(of)g(the)h(p)q
(eople)f(in)g(the)h(group)f(is)g(resp)q(onsible)i(for)e(a)g(giv)o(en)f
(action.)-1370 50 y(Those)18 b(of)f(y)o(ou)h(famil)o(iar)e(with)h
(Hardin's)h(\\The)g(T)m(ragedy)f(of)h(The)g(Common")e(will)-1433 50 y
(understand)g(that)g(this)g(is)f(a)h(problem)f(in)g(an)o(y)h(system)g
(computer)g(or)g(otherwise.)24 b(P)o(art)-1431 50 y(of)13 b(the)h(problem)g
(here)h(is)f(with)f(passw)o(ords.)-649 91 y(1.)20 b(Y)m(ou)c(can't)g(c)o
(hange)h(the)f(passw)o(ord)h(easily)m(.)24 b(Y)m(ou)16 b(ha)o(v)o(e)g(to)g
(\014nd)g(ev)o(ery)o(one)h(in)f(the)-1328 50 y(group)e(to)g(let)g(them)g
(kno)o(w.)-495 83 y(2.)20 b(If)14 b(something)f(Dum)o(b)g(happ)q(ens)i(y)o
(ou)f(don't)f(kno)o(w)g(who)h(to)g(talk)f(to)h(ab)q(out)f(it.)-1308 83 y
(3.)20 b(If)12 b(someone)h(shares)h(the)f(group)f(passw)o(ord)h(with)f
(another)h(p)q(erson,)g(y)o(ou)f(can)h(nev)o(er)-1328 50 y(\014nd)h(out)g
(who)g(did)f(or)h(who)g(all)e(the)j(p)q(eople)f(who)g(knew)g(the)h(passw)o
(ord)f(w)o(ere.)-1294 91 y(Group)h(accoun)o(ts)h(should)f @F6 @sf(always)j
@F9 @sf(b)q(e)e(a)o(v)o(oided.)22 b(The)15 b(administrativ)o(e)g(w)o(ork)g
(to)g(set)-1431 50 y(up)e(sev)o(eral)h(indep)q(enden)o(t)h(accoun)o(ts)f
(is)g(v)o(ery)g(small)e(in)h(comparison)g(to)h(the)g(extra)g(e\013ort)-1431
50 y(in)f(disaster)i(reco)o(v)o(ery)g(for)e(not)h(doing)f(so.)-602 49 y
(One)j(m)o(ust)f(not)h(only)e(a)o(v)o(oid)g(the)i(explicit)f(group)h
(accoun)o(ts,)g(but)f(also)g(the)h(implicit)-1433 50 y(ones.)29 b(This)18 b
(is)g(where)g(an)g(individual)o 16 x(shares)h(his)f(passw)o(ord)g(with)f
(dozens)i(of)e(p)q(eople)-1431 50 y(or)d(allo)o(ws)f(dozens,)i(p)q(erhaps)h
(h)o(undreds)g(of)e(them)g(to)h(use)g(his)f(through)h(pro)o(xy)f(logins)g
(or)-1432 50 y @F4 @sf(.rhosts)p @F9 @sf(.)o 530 242 a(20)-999 b
20 @eop1
19 @bop0
@F2 @sf
[<
00FE0007FFC00F83E01F01F03E00F83E00F87C007C7C007C7C007CFC007EFC007EFC007EFC
007EFC007EFC007EFC007EFC007EFC007EFC007EFC007EFC007EFC007EFC007C7C007C7C00
7C7C007C3E00F83E00F81F01F00F83E007FFC000FE00>
23 32 -2 31 28] 48 @dc
19 @eop0
0 0 19 @bop1 262 307 a @F2 @sf(2.10)55 b(Routing)-353 77 y @F9 @sf
(Routing)9 b(can)j(pro)o(vide)e(a)h(c)o(heap)h(partial)e(protection)h(for)g
(a)g(computer)g(cen)o(ter.)19 b(There)12 b(are)-1431 50 y(some)j(mac)o
(hines)g(that)h(don't)f(need)h(to)f(talk)g(to)g(the)h(outside)f(w)o(orld)g
(at)g(all.)21 b(On)16 b(others,)-1431 49 y(one)g(w)o(ould)f(migh)o(t)h
(lik)o(e)f(to)h(b)q(e)h(able)f(to)g(initiate)g(con)o(tact)g(out)o(w)o(ard)g
(but)h(not)f(ha)o(v)o(e)g(an)o(y)-1432 50 y(real)d(need)i(to)f(allo)o(w)e
(others)j(to)f(con)o(tact)g(this)g(mac)o(hine)g(directly)m(.)-985 50 y(In)c
(an)g(academic)h(computer)g(when)g(administrativ)o(e)e(computers)j(are)f
(placed)f(on)g(same)-1431 50 y(net)o(w)o(ork)g(as)h(the)g(studen)o(t)h
(mac)o(hines,)f(limiti)o(ng)e(routing)h(is)h(often)g(a)f(v)o(ery)h(go)q(o)q
(d)f(idea.)17 b(One)-1431 50 y(can)e(set)h(up)f(the)h(system)g(suc)o(h)g
(that)f(the)h(users)h(on)e(administrativ)o(e)f(mac)o(hines)h(can)h(use)-1431
49 y(the)d(resources)q 14 x(of)f(the)h(academic)g(mac)o(hines)g(without)f
(placing)g(them)h(at)f(signi\014can)o(t)h(risk)-1432 50 y(of)g(attac)o(k)h
(b)o(y)f(the)i(studen)o(t)g(mac)o(hines.)-567 50 y(Ideally)f(one)h(w)o
(ould)f(wish)h(to)f(place)h(the)h(mac)o(hines)f(that)f(need)i(to)f(b)q(e)g
(protected)q 16 x(on)-1432 50 y(their)9 b(o)o(wn)g(lo)q(cal)g(area)h(net)g
(with)f(activ)o(e)g(routers)i(to)e(prev)o(en)o(t)i(an)e(attac)o(k)o(er)h
(from)e(\\listening)-1432 50 y(in")20 b(on)g(the)h(broadcast)h(net.)39 b
(This)20 b(t)o(yp)q(e)i(of)e(an)g(attac)o(k)h(is)f(b)q(ecoming)h
(increasingly)-1432 50 y(p)q(opular.)-152 116 y @F2 @sf(2.11)55 b(Humans)
-357 76 y @F9 @sf(In)17 b(almost)f(all)g(tec)o(hnological)g(systems,)j
(the)f(w)o(eak)o(est)g(link)e(is)h(the)h(h)o(uman)f(b)q(eings)g(in-)-1432
50 y(v)o(olv)o(ed.)g(Since)c(the)h(users,)g(the)g(installers)f(and)f(the)i
(main)o(tainers)e(of)h(the)h(system)f(are)h(\(in)-1432 50 y(the)g(a)o(v)o
(erage)g(case\))h(all)e(h)o(umans,)g(this)h(is)f(a)h(serious)h(problem.)
-1001 108 y @F5 @sf(2.11.1)47 b(Managers)-372 76 y @F9 @sf(Managers,)17 b
(b)q(osses,)h(cen)o(ter)g(directors)g(and)e(other)h(resp)q(e)q(cte)q(d)h
(p)q(eople)f(are)f(often)h(giv)o(en)-1432 50 y(privileged)i(accoun)o(ts)h
(on)f(a)h(v)n(ariet)o(y)f(of)f(mac)o(hines.)36 b(Unfortunately)m(,)19 b
(they)i(often)e(are)-1431 50 y(not)d(as)h(famil)o(iar)e(with)h(the)h
(systems)h(as)f(the)g(programmers)f(and)h(system)g(main)o(tainers)-1432
50 y(themselv)o(es.)i(As)14 b(a)g(result,)g(they)g(often)g(are)h(the)f
(targets)h(of)e(attac)o(k.)18 b(Often)d(they)f(are)g(so)-1431 50 y(busy)i
(that)f(do)h(not)g(tak)o(e)f(the)i(securit)o(y)f(precautions)h(that)f
(others)h(w)o(ould)d(tak)o(e)i(and)g(do)-1432 50 y(not)d(ha)o(v)o(e)g(the)h
(same)f(lev)o(el)g(of)g(tec)o(hnical)g(kno)o(wledge.)18 b(They)c(are)f
(giv)o(en)g(these)i(privileges)-1432 49 y(as)f(a)g(sign)g(of)f(resp)q(ec)q
(t.)20 b(They)15 b(often)f(ignore)g(instructions)h(to)f(c)o(hange)g(passw)o
(ords)h(or)g(\014le)-1432 50 y(protections)-138 50 y(The)g(attac)o(k)o
(ers)g(rarely)f(sho)o(w)h(this)f(lev)o(el)g(of)g(resp)q(e)q(ct.)21 b(They)
15 b(break)g(in)o(to)f(the)h(unpro-)-1432 50 y(tected)j(managerial)d
(accoun)o(t)i(and)f(use)i(it)e(as)h(a)f(v)o(ector)h(to)g(the)g(rest)h(of)e
(the)h(system)h(or)-1432 50 y(cen)o(ter.)26 b(This)16 b(leads)g(to)g(an)g
(em)o(barrassing)g(situations)g(b)q(ey)o(ond)g(the)h(break-in)f(itself)f
(as)-1431 49 y(the)f(manager)g(is)f(made)h(to)g(lo)q(ok)f(p)q(ersonally)h
(incomp)q(eten)o(t)g(and)g(is)g(sometimes)g(accused)-1430 50 y(of)f(b)q
(eing)h(un\014t)g(for)f(his)h(p)q(osition.)-481 50 y(Prev)o(en)o(t)19 b
(this)f(t)o(yp)q(e)h(of)e(situation)h(form)f(o)q(ccurring)i(b)o(y)f
(giving)e(privileges)i(only)g(to)-1432 50 y(p)q(eople)c(that)g(need)h(and)e
(kno)o(w)h(ho)o(w)f(to)h(use)h(them.)-819 108 y @F5 @sf(2.11.2)47 b
(Secretaries)-397 76 y @F9 @sf(Secretaries)14 b(are)f(often)g(giv)o(e)f
(their)h(b)q(osses)h(passw)o(ords)g(b)o(y)e(their)h(b)q(osses.)20 b(When)
12 b(a)h(secre-)-1430 50 y(tary)h(uses)i(his)e(b)q(osses)i(accoun)o(t,)e
(he)h(has)g(all)e(the)i(privileges)f(that)h(his)f(b)q(oss)h(w)o(ould)f(ha)o
(v)o(e)-1432 50 y(and)f(generally)h(do)q(es)g(not)g(ha)o(v)o(e)g(the)g
(training)f(or)h(exp)q(ertise)i(to)e(use)g(them)g(safely)m(.)-1252 50 y
(It)g(is)f(probably)h(not)f(p)q(ossible)h(to)g(prev)o(en)o(t)h(b)q(osses)g
(from)e(giving)g(their)h(passw)o(ords)h(to)-1432 50 y(their)j(secretaries)q
(.)30 b(Still)17 b(one)h(can)g(reduce)h(the)f(need)h(for)e(this)h(b)o(y)f
(setting)i(up)e(groups)-1431 49 y(correctly)m(.)31 b(One)19 b(migh)o(t)d
(consider)j(giving)e(\\b)q(osses")i(t)o(w)o(o)f(separate)h(accoun)o(ts)g
(one)f(for)-737 201 y(19)-999 b
19 @eop1
18 @bop0
@F2 @sf
[<
001800C000003800E000003C01E000007C01F000007E03F000007E03F00000FE03D80000FB
07D80001FB079C0001F38F8C0001F18F0C0003E18F060003E0DF060007E0DE070007C0DE03
0007C07E03000F807C01800F807C01800F807801801F007800C0FFE7FF07F8FFE7FF07F8>
37 22 -1 21 40] 119 @dc
@F9 @sf
[<
FFFFE0F803E07800E03C00603C00201E00201F00300F001007801007801003C01003E00001
E00000F00000F000007800007C00003C00001E00401E00400F00400F804007806003C06003
C07001E07C01F07FFFF0>
20 28 -2 27 25] 90 @dc
@F5 @sf
[<
FFFFFCFFFFFC7E00FC7F003C3F001C1F801C1F800E0FC00E0FE00607E00603F00603F80601
F80000FC0000FC00007E00007F00003F00C01F80C01FC0C00FC0E007E0E007E07003F07803
F87E01F87FFFFC7FFFFC>
23 28 -3 27 29] 90 @dc
@F4 @sf
[<
FFFFC0FFFFC0FFFFC07801C03C01C01E01C00F000007800003E00001F000007800003C0070
1E00700F007007807FFFC07FFFC03FFFC0>
18 18 -1 17 22] 122 @dc
[<
60F0F0600000000060F0F0F0F0F0F0F0F0F0F0F0F0F0F0F060>
4 25 -9 24 22] 33 @dc
[<
3C00003F00007F80007BC00079C00001C00000E00000E00000E00000F00000F00000F00001
B80001B800039800039C00039C00071C00071C00070E000E0E000E0E000E07001C07007F1F
C0FF9FE07F1FC0>
19 27 -1 17 22] 121 @dc
[<
00F80003FE0007FF000707000E03800E03801C01C01C01C01C01C01C01C01C01C01C01C01C
01C01C01C01C01C01C01C01C01C01C01C01C01C01C01C01C01C01C01C07F07F0FF8FF87F07
F0>
21 25 0 24 22] 85 @dc
[<
7F0F00FF9F007F1F001C17001C37001C37001C37001C77001C77001C67001C67001CE7001C
E7001CE7001CC7001CC7001DC7001DC7001D87001D87001D87001D07007F1FC0FF3FE07E1F
C0>
19 25 -1 24 22] 78 @dc
[<
7FFFE0FFFFE07FFFE01C00E01C00E01C00E01C00E01C00E01C00001C1C001C1C001FFC001F
FC001FFC001C1C001C1C001C00001C00001C01C01C01C01C01C01C01C07FFFC0FFFFC07FFF
C0>
19 25 -1 24 22] 69 @dc
[<
07FC000FFE0007FC0000E00000E00000E00000E00000E00000E00000E00000E00000E00000
E00000E00000E00000E00000E00000E000E0E0E0E0E0E0E0E0E0E0E0E0FFFFE0FFFFE07FFF
E0>
19 25 -1 24 22] 84 @dc
@F4 @sf
[<
03F8000FFE003FFF807C07C07001C0E000E0E000E0E000E0E000E07803C03FFF801FFF001F
FC001800003800001BE0001FF0000FF8001C1C00380E00380E00380E00380E00380E001C1C
C00FFFE007F7E003E3C0>
19 28 -1 17 22] 103 @dc
@F2 @sf
[<
01FF000FFFC01F01F03C0038780038F8001CF0001CF0001EF0001EF0003EF000FE7801FE78
07FC3C1FFC1E7FF807FFF003FFE007FFC00FFF801FFFC01FF9E03FE0F03F80783F00783E00
783C00781C00781C00F00E00F00703E003FFC000FE00>
23 32 -2 31 28] 56 @dc
@F2 @sf
[<
03F8000FFE001C0F801E03C03F01E03F00F03F00F83F00F81E007C00007C00007C00207E07
FC7E0FFE7E1E037E3E01FE7C00FE7C00FEFC007EFC007EFC007EFC007EFC007CFC007CFC00
7C7C00787C00F83E00F01E01F00F83E007FF8001FE00>
23 32 -2 31 28] 57 @dc
18 @eop0
0 0 18 @bop1 324 307 a @F9 @sf(While)13 b(the)i(am)o(bitio)o(us)e(and)h
(dedicated)h(system)g(manager)e(is)h(encouraged)h(to)f(\014x)g(all)-1433
50 y(of)f(the)h(securit)o(y)g(problems)g(that)g(exist,)f(\014xing)g(these)i
(few)f(will)e(discourage)i(most)g(of)f(the)-1431 50 y(attac)o(k)o(ers.)-174
116 y @F2 @sf(2.7)55 b(New)19 b(Securit)n(y)e(Holes)-611 77 y @F9 @sf(New)g
(securit)o(y)g(holes)g(are)h(alw)o(a)o(ys)d(b)q(eing)i(found.)26 b(There)
18 b(are)f(a)g(n)o(um)o(b)q(er)g(of)f(computer)-1431 49 y(mail)o(ing)g
(lists)i(and)f(advisory)g(groups)h(the)h(follo)o -1 x(w)d(this.)30 b
(Three)19 b(groups)f(of)f(particular)-1432 50 y(in)o(terest)e(are)f(CER)m
(T,)f(ZARDOZ)h(and)g(CIA)o(C.)-747 108 y @F5 @sf(2.7.1)47 b(CER)l(T)-275
77 y @F9 @sf(Cert)21 b(is)f(a)f(D)o(ARP)m(A)h(sp)q(onsored)h(group)f(to)g
(help)h(in)o(ternet)g(sites)g(deal)f(with)g(securit)o(y)-1431 50 y
(problems.)38 b(They)21 b(ma)o(y)f(b)q(e)h(con)o(tacted)h(as)e @F4 @sf
(cert@cert.s)o(ei.cm)o(u.edu)o @F9 @sf(.)37 b(They)21 b(also)-1432 49 y
(main)o(tai)o(n)13 b(a)g(24)h(hour)g(phone)g(n)o(um)o(b)q(er)g(for)f
(secur)q(it)o(y)h(problems)g(at)g(\(412\))f(268-7090.)-1362 108 y @F5 @sf
(2.7.2)47 b(ZARDOZ)-348 77 y @F9 @sf(Neil)12 b(Gorsuc)o(h)i(mo)q(derates)g
(a)f(computer)h(secur)q(it)o(y)g(discussion)g(group.)j(He)d(ma)o(y)f(b)q
(e)h(con-)-1432 50 y(tacted)249 b(as)g @F4 @sf(zardoz!secu)o(rity)o(-requ)o
(e)p(st@u)o(unet.)o(UU.NE)o(T)-1433 50 y @F9 @sf(or)13 b @F4 @sf
(security-req)o(uest@)o(cpd.)p(c)o(om)p @F9 @sf(.)o -586 107 a @F5 @sf
(2.7.3)47 b(CIA)o(C)-266 77 y @F9 @sf(CIA)o(C)16 b(is)h(the)h(Departmen)o
(t)f(of)f(Energy's)i(Computer)f(Inciden)o(t)h(Advisory)f(Capabili)o(t)o(y)
-1433 50 y(team)10 b(led)g(b)o(y)g(Gene)h(Sc)o(h)o(ultz.)17 b(This)10 b
(team)g(is)h(in)o(terested)h(in)d(disco)o(v)o(ering)i(and)f(eliminati)o
(ng)-1433 50 y(securit)o(y)j(holes,)g(exc)o(hanging)g(securit)o(y)h(to)q
(ols,)e(as)h(w)o(ell)f(as)h(other)h(issues.)19 b(Con)o(tact)13 b(CIA)o(C)
-1432 49 y(as)g @F4 @sf(ciac@tiger.l)o(lnl.g)o(ov)p @F9 @sf(.)-478 117 y
@F2 @sf(2.8)55 b(Excess)18 b(Services)-506 76 y @F9 @sf(Ev)o(ery)e(extra)h
(net)o(w)o(ork)f(service)i(that)e(a)f(computer)i(o\013ers)g(p)q(oten)o
(tially)e(p)q(oses)i(an)f(addi-)-1432 50 y(tional)c(secur)q(it)o(y)j
(vulnerabilit)o(y)l(.)j(I)c(am)f(emphatically)g @F6 @sf(not)18 b @F9 @sf
(suggesting)d(that)f(w)o(e)h(remo)o(v)o(e)-1432 50 y(those)d(services)q
13 x(that)g(the)h(users)g(are)g(using,)f(I)g(am)f(encouraging)h(the)h
(remo)o(v)n(al)d(of)i(services)-1430 50 y(that)h(are)h(un)o(used.)k(If)13 b
(y)o(ou)g(are)h(not)f(getting)g(a)g(b)q(ene\014t)i(from)d(a)h(service,)i
(y)o(ou)e(should)g(not)-1432 50 y(pa)o(y)g(the)i(price)g(in)f(terms)h(of)e
(system)i(o)o(v)o(erhead)g(or)f(securit)o(y)h(risk.)k(Sometimes,)14 b(as)g
(with)-1432 49 y @F4 @sf(rexecd)f @F9 @sf(under)j(unix,)f(the)h(risks)f
(are)h(not)f(immediately)e(apparen)o(t)j(and)f(are)h(caused)g(b)o(y)-1432
50 y(unexp)q(ected)g(in)o(teractions)e(that)g(do)f(not)h(include)g(an)o(y)g
(bugs)g(p)q(er)g(se.)-1102 116 y @F2 @sf(2.9)55 b(Searc)n(h)19 b(P)n(aths)
-445 77 y @F9 @sf(If)13 b(a)g(user)h(has)g(set)h(his)e(searc)o(h)i(path)e
(to)h(include)f(the)h(curren)o(t)h(directory)g(\(\\.")i(on)c(Unix\),)-1432
50 y(he)j(will)e(almost)h(alw)o(a)o(ys)g(ev)o(en)o(tually)g(ha)o(v)o(e)h
(a)f(serious)i(problem.)24 b(There)16 b(are)h(a)e(n)o(um)o(b)q(er)-1431
50 y(of)h(securit)o(y)h(vulnerabilities)f(that)h(this)g(p)q(oses)h(as)f(w)o
(ell)f(as)h(logistical)e(ones.)27 b(Searc)o(hing)-1431 49 y(through)13 b
(the)h(all)f(of)g(the)h(users)h(initial)o(izatio)o(n)d(\014les)i(and/or)g
(through)f(the)h(pro)q(cess)q 15 x(table)-1432 50 y(\(with)f @F4 @sf(ps)
22 b(-e)13 b @F9 @sf(on)h(unix\))f(can)h(detect)i(this)e(problem.)-147 305 y
(18)-999 b
18 @eop1
17 @bop0
@F2 @sf
[<
FFFF83FFFCFFFF83FFFC07F0003FC007F0007F8007F0007F0007F000FF0007F001FE0007F0
01FC0007F003F80007F007F80007F007F00007F00FE00007F01FE00007F01FC00007F83F80
0007FE7F800007F77F000007F3FE000007F1FE000007F0FC000007F038000007F018000007
F00E000007F007000007F003800007F001C00007F000E00007F000300007F000180007F000
0E0007F000070007F0000380FFFF803FFCFFFF803FFC>
38 34 -2 33 44] 75 @dc
@F5 @sf
[<
003FFF0000003FFF00000003F000000003F000000003F000000003F000000003F000000003
F000000003F000000003F000000003F000000003F000000007F80000000FF80000000FFC00
00001FCE0000003F860000003F870000007F03000000FE01800000FE01C00001FC00C00003
F800600003F800700007F00030000FE0003800FFFC01FF80FFFC01FF80>
33 28 -1 27 36] 89 @dc
[<
07F007F01FFE3FF87E07FE1C7C01F806FC07F006F80FF000F81FD800781F8C00783F060038
7E03001CFC030004FC018003F800C001F000C003F0006003E0003003E001FF03F001FF07C8
000007C4000007C2000007C3000007C18000078180000381800003C1800001C1000000E300
00003C0000>
32 29 -2 28 37] 38 @dc
17 @eop0
0 0 17 @bop1 365 307 a @F9 @sf(to)17 b(b)q(e)h(a)f(\014le)h(to)f(b)q(e)h
(in)f(his)g(home)g(directory)h(that)g(is)f(o)o(wned)g(b)o(y)h(someone)f
(else.)-1328 50 y(Flagging)12 b(this)i(when)h(the)f(link-coun)o(t)f(is)h
(\\1")f(is)h(w)o(orth)o(while.)-1039 90 y(Automated)d(scripts)h(can)g(\014nd)f
(these)i(errors)g(b)q(efore)f(they)f(are)h(exploited.)17 b(In)11 b
(general)-1431 49 y(a)g(serious)i(error)g(of)e(one)h(of)f(the)i(t)o(yp)q
(es)g(describ)q(ed)g(ab)q(o)o(v)o(e)f(is)g(en)o(tered)h(in)o(to)e(a)h(giv)o
(en)f(cluster)-1430 50 y(univ)o(ersit)o(y)i(system)i(ev)o(ery)g(other)f(w)o
(eek.)-646 116 y @F2 @sf(2.6)55 b(W)-5 b(ell)18 b(Kno)n(wn)i(Securit)n(y)d
(Holes)-803 77 y @F9 @sf(While)10 b(h)o(undreds)j(of)d(securit)o(y)j
(holes)e(exist)h(in)f(commonly)f(used)i(programs,)f(a)g(v)o(ery)h(small)
-1433 50 y(n)o(um)o(b)q(er)17 b(of)f(these)j(accoun)o(t)e(for)g(most)g(of)f
(the)i(problems.)28 b(Under)18 b(mo)q(dern)f(v)o(ersion)g(of)-1432 49 y
(VMS,)c(most)h(of)f(them)h(relate)h(to)e(either)i(DECNET)f(or)g(creating)g
(Mailb)q(o)o(xes.)-1192 50 y(Under)19 b(unix,)f(a)g(handful)f(of)h
(programs)g(accoun)o(t)g(for)g(most)g(of)g(the)h(problems.)30 b(It)-1431
50 y(is)15 b(not)h(that)h(these)g(bugs)f(are)h(an)o(y)e(w)o(orse)i(or)f
(easier)h(to)f(exploit)f(than)i(the)f(others,)h(just)-1431 50 y(that)d
(they)h(are)f(w)o(ell)g(kno)o(wn)g(and)g(p)q(opular.)19 b(The)c(in)o
(terested)h(reader)f(is)g(referred)h(to)e(the)-1431 50 y(Hac)o(kman)f(Pro)r
(ject)i(for)f(a)f(more)h(complete)g(listing.)-831 89 y @F5 @sf(Set-Uid)o
15 x(Shell)h(Scripts.)20 b @F9 @sf(Y)m(ou)14 b(should)h(not)f(ha)o(v)o(e)h
(an)o(y)f(set-uid)i(shell)e(scripts.)23 b(If)14 b(y)o(ou)-1329 50 y(ha)o
(v)o(e)c(system)i(source,)g(y)o(ou)d(should)i(consider)g(mo)q(difying)o
9 x(c)o(hmo)q(d)g(to)f(prev)o(en)o(t)h(users)-1327 50 y(from)i(creating)i
(set-uid)f(programs.)-678 82 y @F5 @sf(FTP)l(.)20 b @F9 @sf(The)14 b(\014le)f
(transfer)h(utilities)e(has)h(had)g(a)g(n)o(um)o(b)q(er)g(of)g(problems)g
(b)q(oth)g(in)f(terms)i(of)-1329 50 y(con\014guration)f(managemen)o(t)f
(\(remem)o(b)q(ering)h(to)g(disallo)o(w)e(accoun)o(ts)i(lik)o(e)f(\\sync")
-1328 50 y(from)f(b)q(eing)h(used)g(to)f(transfer)i(\014les\))f(and)f
(legitimate)g(bugs.)17 b(P)o(atc)o(hed)12 b(v)o(ersion)g(are)-1328 50 y(a)o
(v)n(ailabl)o(e)h(for)g(most)h(systems.)-590 82 y @F5 @sf(Login)19 b @F9 @sf
(on)13 b(the)h(Sun)f(386i)f(and)h(under)h(Dec)f(Ultrix)g(3.0,)f(un)o(til)g
(a)h(b)q(etter)h(\014x)f(is)g(a)o(v)n(ailabl)o(e,)-1176 83 y(c)o(hmo)q(d)h
(0100)e(/bin/login)-573 82 y(to)i(protect)h(y)o(ourself)f(from)f(a)h
(serious)g(securit)o(y)h(bug.)-954 82 y @F5 @sf(Send)o(mail.)20 b @F9 @sf
(Probably)14 b(the)g(only)f(program)g(with)h(as)g(man)o(y)f(securit)o(y)h
(problems)g(as)g(the)-1328 50 y(y)o(ello)o(wpages)e(system)h(itself.)18 b
(Again)12 b(a)g(patc)o(hed)h(v)o(ersion)g(should)f(b)q(e)i(obtained)e(for)
-1329 50 y(y)o(our)i(system.)-333 82 y @F5 @sf(TFTP)l(.)21 b @F9 @sf(This)f
(program)g(should)h(b)q(e)g(set)g(to)g(run)g(as)g(an)f(unprivileged)g
(user)i(and/or)-1329 50 y(c)o(hro)q(oted.)-271 82 y @F5 @sf(Rw)o(alld.)f
@F9 @sf(This)14 b(program)f(needs)i(to)f(b)q(e)g(set)h(to)f(run)g(as)g(an)g
(unprivileged)f(user.)-1282 83 y @F5 @sf(Mkdir.)20 b @F9 @sf(Some)f(v)o
(ersions)g(of)f(unix)g(do)g(not)g(ha)o(v)o(e)h(an)f(atomic)g(k)o(ernel)h
(call)e(to)i(mak)o(e)f(a)-1329 50 y(directory)11 b(and)f(hence)h(can)f
(lea)o(v)o(e)g(the)g(ino)q(des)h(in)e(a)h(\\bad")f(state)i(if)e(it)g(is)h
(in)o(terrupted)-1327 49 y(at)15 b(just)h(the)f(righ)o(t)g(momen)o(t.)21 b
(If)15 b(y)o(our)g(system)h(is)f(one)g(of)g(these)h(it)f(is)g(w)o(orth)o
(while)-1329 50 y(to)g(write)h(a)f(short)h(program)f(that)g(increases)i
(the)f(job)f(priorit)o(y)g(of)f(a)h(job)g(while)g(it)-1329 50 y(is)f
(making)e(a)i(directory)h(so)f(as)g(to)f(mak)o(e)h(it)f(more)h(di\016cult)f
(to)h(exploit)f(this)h(hole.)-1416 82 y @F5 @sf(YP)h(&)h(NFS.)21 b @F9 @sf
(Both)16 b(presen)o(t)h(gian)o(t)d(securit)o(y)j(holes.)22 b(It)16 b(is)f
(imp)q(ortan)o(t)g(to)g(arrange)h(to)-1329 50 y(get)c(patc)o(hes)h(as)e
(so)q(on)h(as)f(they)h(b)q(ecome)h(a)o(v)n(ai)o(labl)o(e)e(for)g(these)i
(subsystems)g(b)q(ecause)-1327 50 y(w)o(e)j(can)f(exp)q(ect)i(more)e
(secur)q(it)o(y)h(problems)f(with)g(them)g(in)g(the)h(future.)23 b(Sun)15 b
(has)-1328 50 y(recen)o(tly)g(started)g(a)f(computer)g(securit)o(y)h
(group)f(that)g(will)e(help)i(solv)o(e)g(this)f(set)i(of)-1329 50 y
(problems.)416 124 y(17)-999 b
17 @eop1
16 @bop0
@F5 @sf
[<
40300808040402027AFEFEFCFC78>
7 14 -3 28 13] 39 @dc
@F5 @sf
[<
FF07FCFF07FC0C03E00607C0070F80039F0001DF0000FE00007C0000F80001F80001FC0003
EE0007C7000F83801F8180FFC7FCFFC7FC>
22 18 -1 17 25] 120 @dc
16 @eop0
0 0 16 @bop1 262 307 a @F2 @sf(2.5)55 b(File)18 b(Protections)-519 77 y
@F9 @sf(With)g(\014le)h(protections)h(simple)e(measures)i(can)g(a)o(v)o
(oid)d(most)i(problems.)33 b(Batc)o(h)20 b(jobs)-1432 50 y(should)13 b(b)q
(e)i(run)f(on)g(a)f(regular)h(basis)g(to)g(c)o(hec)o(k)h(that)f(the)g
(protections)h(are)f(correct.)-1342 91 y @F5 @sf(W)l(ritable)h(Binaries)h
(and)f(System)f(Directories.)20 b @F9 @sf(The)j(most)f(common)g(problem)
-1329 50 y(with)16 b(\014le)h(protections)g(is)g(that)f(some)h(system)g
(binary)f(or)h(directory)g(is)f(not)h(pro-)-1329 50 y(tected.)i(This)13 b
(allo)o(ws)e(the)i(attac)o(k)o(er)f(to)h(mo)q(dify)e(the)i(system.)18 b
(In)12 b(this)h(manner,)f(an)-1329 49 y(attac)o(k)o(er)h(will)e(alter)h(a)g
(common)f(program,)h(often)g(the)h(directory)g(listing)e(program)-1329 50 y
(to)18 b(create)h(a)f(privileged)f(accoun)o(t)h(for)g(them)g(the)g(next)g
(time)g(that)g(a)f(privileged)-1329 50 y(user)e(uses)g(this)f(command.)-445
66 y(When)i(p)q(ossible)f(the)h(system)f(binaries)h(should)e(b)q(e)i(moun)o
(ted)f(read-only)m(.)21 b(In)15 b(an)o(y)-1329 50 y(ev)o(en)o(t)g(a)f
(program)f(should)h(systematically)f(\014nd)i(and)e(correc)q(t)i(errors)g
(in)f(the)h(pro-)-1329 50 y(tection)g(of)e(system)i(\014les.)k(\\Public")
13 b(areas)h(for)g(unsupp)q(orted)i(executable)f(should)-1329 50 y(b)q(e)k
(mo)q(derated)f(and)g(these)i(executable)f(should)e @F6 @sf(never)23 b
@F9 @sf(b)q(e)c(used)f(b)o(y)g(privileged)-1329 50 y(users)e(and)d
(programs.)18 b(System)d(data)e(\014les)h(su\013er)h(from)f(simila)o(r)f
(vulnerabilities.)-1424 83 y @F5 @sf(Readable)i(Restricted)o 15 x(System)f
(Files.)22 b @F9 @sf(Just)16 b(as)g(the)h(encrypted)g(passw)o(ords)g(need)
-1328 49 y(to)11 b(b)q(e)h(protecte)q(d,)g(the)g(system)g(has)g(other)g
(data)f(that)g(is)g(w)o(orth)g(protecting.)18 b(Man)o(y)-1329 50 y
(computers)d(ha)o(v)o(e)e(passw)o(ords)i(and)e(phone)h(n)o(um)o(b)q(ers)h
(of)e(other)h(computers)h(stored)-1328 50 y(for)i(future)g(use.)28 b(The)
17 b(most)f(common)g(use)i(of)e(this)h(t)o(yp)q(e)g(of)f(information)f(is)i
(for)-1329 50 y(net)o(w)o(ork)g(mail)e(b)q(eing)h(transp)q(orted)i(via)e
(UUCP)g(or)h(protected)h(DECNET.)e(It)h(is)-1329 50 y(di\016cult)h(to)f
(rew)o(ork)i(these)g(systems)g(so)f(that)g(this)g(information)e(w)o(ould)h
(not)h(b)q(e)-1328 50 y(neces)q(sary)j(and)f(hence)h(it)f(m)o(ust)f(b)q(e)i
(protected.)37 b(Y)m(ou)20 b(ha)o(v)o(e)f(an)h(obligatio)o(n)f(to)-1329
49 y(protect)d(this)f(data)g(ab)q(out)g(y)o(our)f(neigh)o(b)q(ors)h(just)g
(as)g(they)h(ha)o(v)o(e)e(a)h(resp)q(onsibilit)o(y)-1329 50 y(to)f
(protect)h(similar)e(data)g(that)h(they)g(ha)o(v)o(e)g(ab)q(out)g(y)o(ou.)
-1003 83 y @F5 @sf(Home)h(Dir's)h(and)f(Init)g(Files)i(Shou)o(ldn't)d(Be)i
(W)l(ritable.)k @F9 @sf(Chec)o(king)g(that)f(these)-1327 50 y(directories)e
(and)e(\014les)h(can)f(b)q(e)h(written)g(only)f(b)o(y)g(the)h(o)o(wner)f
(will)f(prev)o(en)o(t)i(man)o(y)-1329 50 y(careless)i(errors.)25 b(It)16 b
(is)g(also)f(w)o(orth)o(while)g(to)h(c)o(hec)o(k)g(that)g(p)q(eoples)h
(mail)d(arc)o(hiv)o(es)-1328 50 y(are)g(not)g(publically)e(readable.)19 b
(Though)13 b(this)h(is)f(not)h(directly)g(a)g(securit)o(y)g(threat,)-1328
49 y(it)g(is)g(only)f(one)h(more)g(line)f(of)g(co)q(de)i(while)e(writing)g
(the)i(rest)g(of)e(this.)-1106 67 y(In)20 b(man)o(y)g(v)o(ersions)g(of)g
(the)h(common)e(op)q(erating)h(systems)h(sp)q(ecial)g(c)o(hec)o(ks)g(are)
-1328 50 y(placed)13 b(in)f(the)h(command)e(in)o(terpreters)q 14 x(to)h
(prev)o(en)o(t)h(them)f(from)g(using)g(initiali)o(za-)-1330 49 y(tion)h
(\014les)h(that)g(w)o(ere)g(written)g(b)o(y)g(a)f(third)g(part)o(y)m(.)18 b
(In)13 b(this)h(case)g(there)h(are)f(still)f(at)-1329 50 y(least)g(t)o(w)o
(o)e(t)o(yp)q(es)i(of)f(in)o(teresting)g(attac)o(ks.)18 b(The)13 b(\014rst)g
(is)f(to)g(install)e(a)i(T)m(ro)r(jan)g(horse)-1328 50 y(in)17 b(the)i(p)q
(erson's)f(home)f(directory)i(tree)g(rather)f(than)g(in)f(the)h(initial)o
(ization)e(\014le)-1329 50 y(itself)c(and)f(the)h(second)h(is)e(to)h
(simple)f(remo)o(v)o(e)h(the)g(initiali)o(zation)e(\014les)i(themselv)o
(es.)-1328 50 y(Often)k(securit)o(y)g(w)o(eaknesses)g(are)g(remedied)f
(through)g(the)h(prop)q(er)f(initiali)o(zation)-1330 50 y(\014le)f(and)g
(without)f(these)j(\014les)e(the)g(vulnerabilities)f(are)i(re-in)o(tro)q
(duced.)-1258 83 y @F5 @sf(No)h(Unexp)q(ected)o 15 x(Publically)g(W)l
(ritable)g(Files)g(or)f(Directories.)20 b @F9 @sf(There)g(are)g(of)-1329
49 y(course)e(places)f(and)g(individual)o 16 x(\014les)g(that)f(should)h
(b)q(e)g(publically)e(writable)h(but)-1328 50 y(these)k(are)e(stable)h
(quan)o(tities)f(and)g(the)g(script)h(can)g(ignore)e(them.)31 b(In)19 b
(practice)-1328 50 y(user)e(seems)f(to)f(react)h(w)o(ell)f(to)g(b)q(eing)g
(told)g(ab)q(out)g(\014les)g(that)g(they)h(o)o(wn)f(that)g(are)-1328 50 y
(publically)e(o)o(v)o(erwritable.)-529 83 y @F5 @sf(When)i(P)o(aren)n(ts)f
(aren't)h(Owners.)20 b @F9 @sf(While)13 b(it)f(is)h(not)g(un)o(usual)g
(for)f(someone)i(to)f(ha)o(v)o(e)-1329 50 y(a)k(link)f(to)h(a)g(\014le)g
(outside)g(of)g(his)g(directory)h(structure,)h(it)e(is)g(un)o(usual)g(for)f
(there)-735 156 y(16)-999 b
16 @eop1
15 @bop0
@F4 @sf
[<
7F03C0FF87E07F07E01C0E701C0E701C0E201C0E001C0E001C0E001C0E001C1C001FFC001F
F8001FFC001C1E001C0F001C07001C07001C07001C07001C0F001C1E007FFC00FFF8007FE0
00>
20 25 -1 24 22] 82 @dc
@F4 @sf
[<
0E0E000F1E000F1E001B1B0019130019B30019B30019B30019B30019B30019B30039B38039
F38039F38038E3803803803803803803803001807001C07001C07001C0FC07E0FE0FE0FC07
E0>
19 25 -1 24 22] 87 @dc
@F4 @sf
[<
7FF800FFFE007FFF001C0F801C07801C03C01C01C01C01C01C00E01C00E01C00E01C00E01C
00E01C00E01C00E01C00E01C01E01C01C01C01C01C03C01C07801C0F007FFF00FFFE007FF8
00>
19 25 0 24 22] 68 @dc
@F4 @sf
[<
70F8F8F870000000000000000070F8F8F870>
5 18 -8 17 22] 58 @dc
[<
C00000E00000E000007000007000003800003800001C00001C00000E00000E000007000007
000003800003800001C00001C00000E00000E000007000007000003800003800001C00001C
00000E00000E00000700000700000380000380000180>
17 32 -2 28 22] 47 @dc
[<
0F1E000F1E000F1E001DB7001DB7001DB7001DB70019B30019F30019F30038E38038038038
0380380380380380FF1FE0FFBFE0FF1FE0>
19 18 -1 17 22] 119 @dc
@F4 @sf
[<
01F00007FC000FFE001F0F003C0700380380700380700380F00000E00000E00000E00000E0
0000E00000E00000E00000F000007003807003803803803C07801F0F800FFF8007FB8001F1
80>
17 25 -2 24 22] 67 @dc
@F4 @sf
[<
03E0000FF8001FFC001E3C003C1E00780F00700700700700F00780E00380E00380E00380E0
0380E00380E00380E00380E00380700700700700780F00380E001E3C001FFC000FF80003E0
00>
17 25 -2 24 22] 48 @dc
15 @eop0
0 0 15 @bop1 262 307 a @F5 @sf(Sysdiag.)20 b @F9 @sf(Or)d @F4 @sf(diag)p
@F9 @sf(.)25 b(This)17 b(is)f(used)i(for)e(doing)g(hardw)o(are)h(main)o
(tenance)f(and)h(should)-1329 50 y(ha)o(v)o(e)d(a)g(passw)o(ord.)-411 78 y
@F5 @sf(Ro)q(ot.)20 b @F9 @sf(Or)11 b @F4 @sf(Rootsh)e @F9 @sf(or)h @F4 @sf
(rootcsh)f @F9 @sf(or)h @F4 @sf(toor)p @F9 @sf(.)16 b(All)9 b(to)h(often)h
(shipp)q(ed)g(without)f(a)g(passw)o(ord.)-1432 77 y @F5 @sf(Sync.)20 b
@F9 @sf(Used)g(to)f(protect)h(the)f(disks)g(when)h(doing)e(an)g(emergency)i
(sh)o(utdo)o(wn.)34 b(This)-1329 50 y(accoun)o(t)15 b(should)e(b)q(e)i
(restricted)h(from)d(\014le)h(transfer)h(and)e(other)i(net)f(uses.)-1294
78 y @F5 @sf(Finger.)20 b @F9 @sf(Or)d @F4 @sf(Who)g @F9 @sf(or)g @F4 @sf
(W)g @F9 @sf(or)g @F4 @sf(Date)g @F9 @sf(or)g @F4 @sf(Echo)p @F9 @sf(.)27 b
(All)17 b(of)f(these)j(ha)o(v)o(e)e(legitimate)f(uses)i(but)-1328 50 y
(need)d(to)f(b)q(e)g(set)h(up)f(to)g(b)q(e)g(prop)q(erly)h(captiv)o(e.)-785
78 y(Among)e(the)h(things)g(that)g(one)g(should)g(do)g(with)f(a)h(new)g
(unix)f(system)i(is)-1065 72 y @F4 @sf(grep)21 b(::)43 b(/etc/pass)o(wd)
-603 72 y @F9 @sf(to)13 b(see)i(what)e(unpassw)o(orded)i(accoun)o(ts)f
(exist)g(on)g(the)g(system.)19 b(All)12 b(of)h(these)j(are)e(w)o(orth)-1432
50 y(sp)q(ecial)g(atten)o(tion.)-312 106 y @F5 @sf(2.4.2)47 b(VMS)-253 76 y
@F9 @sf(Since)11 b(VMS)g(is)f(a)o(v)n(aila)o(ble)g(from)f(only)h(one)h(v)o
(endor,)g(the)h(default)e(accoun)o(t)h(here)h(are)f(b)q(etter)-1430 50 y
(kno)o(wn.)24 b(On)16 b(large)g(systems,)i(these)f(app)q(ear)g(with)f
(standard)g(w)o(ell)g(kno)o(wn)f(passw)o(ords.)-1431 50 y(On)f(smaller)f
(systems,)i(these)h(accoun)o(ts)f(app)q(ear)f(with)g(no)g(passw)o(ords)h
(at)f(all.)j(With)d(the)-1431 50 y(exception)j(of)f @F4 @sf(Decnet)p @F9 @sf
(,)g(all)g(ha)o(v)o(e)h(b)q(een)h(eliminated)e(on)h(systems)h(new)o(er)g
(than)e(v)o(ersion)-1431 49 y(4.6.)-66 73 y @F5 @sf(Decnet)-148 77 y
(System)-152 78 y(Systest)o -149 78 a(Field)-105 77 y(UETP)-72 73 y @F9 @sf
(Man)o(y)11 b(of)h(the)g(net)o(w)o(orking)g(and)g(mail)e(deliv)o(ery)i
(pac)o(k)n(ages)g(routinely)g(added)g(to)g(VMS)-1431 49 y(systems)k(also)f
(ha)o(v)o(e)h(w)o(ell)f(kno)o(w)g(passw)o(ord.)24 b(In)15 b(the)i(past)f
(six)f(mon)o(ths)h(these)h(accoun)o(ts)-1431 50 y(ha)o(v)o(e)c(b)q(een)i
(commonly)e(used)h(to)g(break)g(in)o(to)g(VMS)g(systems.)-994 73 y @F5 @sf
(MMPONY)-232 77 y(PLUTO)-168 72 y @F9 @sf(The)j(passw)o(ord)h(on)f(all)f
(of)h(these)h(accoun)o(ts)g(should)f(b)q(e)h(reset)q 18 x(when)g(a)f(new)h
(system)g(is)-1432 50 y(obtained.)33 b(There)20 b(are)g(man)o(y)e
(problems)h(with)g(the)h @F4 @sf(DECNET)e @F9 @sf(accoun)o(t)h(and)g(the)h
(with)-1432 50 y(the)15 b @F4 @sf(Task)21 b(0)14 b @F9 @sf(ob)r(ject.)21 b
(System)15 b(managers)g(should)f(obtain)g(one)h(of)f(the)h(standard)g
(repair)-1431 50 y(scripts)g(to)e(remo)o(v)o(e)h(these)i(vulnerabiliti)o
(es.)-698 106 y @F5 @sf(2.4.3)47 b(CMS)-251 76 y @F9 @sf(It)18 b(has)h(b)q
(een)g(man)o(y)f(y)o(ears)h(since)h(I)e(ha)o(v)o(e)g(seriously)h(used)g
(CMS.)g(A)o(t)f(last)g(glance)h(the)-1431 50 y(default)13 b(con\014guration)h
(seemed)h(to)e(include)h(w)o(ell)g(kno)o(w)f(passw)o(ords)i(for)e(t)o(w)o
(o)h(accoun)o(ts.)-1425 78 y @F5 @sf(rcsc)-81 78 y(op)q(erator)515 132 y
@F9 @sf(15)-999 b
15 @eop1
14 @bop0
@F4 @sf
[<
7F0000FF80007F00001C00001C00001C00001C00001C00001C00001C00001FF8001FFE001F
FF001C0F801C03801C03C01C01C01C01C01C01C01C03C01C03801C0F807FFF00FFFE007FF8
00>
18 25 -1 24 22] 80 @dc
14 @eop0
0 0 14 @bop1 262 307 a @F5 @sf(Sub)r(job)o(s.)20 b @F9 @sf(It)14 b(is)h
(often)g(the)g(case)h(that)f(a)f(restricte)q(d)i(accoun)o(t)f(is)g(set)g
(up)g(to)g(only)f(run)h(a)-1329 50 y(single)c(application.)16 b(This)11 b
(single)g(application)e(program)i(is)g(in)o(v)o(ok)o(ed)f(b)o(y)h(a)g
(startup)-1328 50 y(script)19 b(or)e(instead)h(of)f(the)h(standard)g
(command)f(in)o(terpreter.)31 b(V)m(ery)18 b(often)g(this)-1329 50 y
(program)c(has)g(an)f(option)g(to)h(spa)o(wn)g(a)g(subpro)q(cess.)-842 62 y
(In)i(some)f(cases)h(this)g(migh)o(t)e(b)q(e)i(an)f(arbitrary)g(job)g(\(e.)g
(g.)f(the)i @F4 @sf(/spawn)e @F9 @sf(option)h(to)-1329 50 y(Mail)d(in)h
(VMS)h(or)f(\\:!")k(to)c(vi)f(in)h(unix\))g(or)g(migh)o(t)f(b)q(e)i
(limited)e(to)h(a)g(small)f(n)o(um)o(b)q(er)-1328 50 y(of)k(programs.)24 b
(In)16 b(the)g(former)g(case)h(the)g(problem)e(is)h(immediate,)f(in)h(the)g
(latter)-1328 49 y(case,)c(it)e(is)g(often)h(the)g(case)g(that)f(one)h(of)f
(these)i(programs)e(in)g(turn)h(allo)n(ws)f(arbitrary)-1329 50 y(spa)o
(wning.)-180 63 y(A)15 b(carefully)f(written)h(subsystem)h(will)d(prev)o
(en)o(t)j(this)e(\(and)h(all)e(other)i(suc)o(h)h(prob-)-1329 49 y(lems\).)
25 b(Generally)15 b(these)i(subsyste)q(ms)g(are)f(create)q(d)h(quic)o(kly)e
(rather)i(than)f(care-)-1328 50 y(fully)m(.)-194 75 y @F5 @sf(Editors.)k
@F9 @sf(Most)c(editors)g(are)g(su\016cien)o(tly)g(p)q(o)o(w)o(erfully)f
(that)h(if)f(the)h(restricted)q 17 x(system)-1328 50 y(can)e(use)h(an)f
(editor,)f(a)h(w)o(a)o(y)f(can)h(b)q(e)h(found)e(to)h(cause)h(problems.)
-1146 75 y @F5 @sf(F)l(ull)h(Filenames.)k @F9 @sf(Man)o(y)10 b(restricte)q
(d)h(subsyste)q(ms)g(presume)h(that)e(b)o(y)g(resett)q(ing)h(the)g(set)-1328
50 y(of)k(places)h(the)g(command)f(in)o(terpreter)q 17 x(lo)q(oks)g(for)g
(executable)h(programs)g(\(called)-1329 50 y(its)g(\\searc)o(h)h(path"\))f
(functionalit)o(y)o 15 x(can)g(b)q(e)g(restricte)q(d.)25 b(In)16 b(unix)f
(this)h(migh)o(t)f(b)q(e)-1328 49 y(done)f(b)o(y)g(altering)f(the)i @F4 @sf
(Path)e @F9 @sf(v)n(ariable)g(or)h(the)g(logical)e(names)i(table)g(in)f
(VMS.)-1272 63 y(All)j(to)q(o)g(often)g(the)h(clev)o(er)g(attac)o(k)o(er)f
(is)g(able)g(to)h(defeat)f(this)g(plan)g(b)o(y)g(using)g(the)-1328 50 y
(complete)g(\014lename)f(of)g(the)h(\014le)f(of)g(in)o(terest.)24 b
(Sometimes)15 b(non-standard)g(names)-1328 49 y(for)f(the)g(\014le)g(are)g
(neces)q(sary)h(to)f(circum)o(v)o(en)o(t)g(a)g(clev)o(er)h(restriction)g
(program.)-1338 75 y @F5 @sf(Remo)o(v)m(able)g(Restriction)f(Files.)21 b
@F9 @sf(When)15 b(a)e(system)i(relies)f(on)g(an)f(initializati)o(on)g(\014le)
-1329 50 y(to)f(pro)o(vide)f(protection,)i(it)e(is)h(imp)q(ortan)o(t)f
(that)g(this)h(\014le)g(cannot)g(b)q(e)g(altered)g(or)g(re-)-1328 50 y(mo)o
(v)o(ed.)17 b(If)11 b(an)g(restrict)q(ed)i(application)d(is)i(able)f(to)g
(write)h(to)f(its)h(\\home)f(directory")-1328 50 y(where)k(these)h
(initial)o(izatio)o(n)d(\014les)h(are)g(k)o(ept)h(it)e(can)h(often)g(free)h
(itself.)-1218 75 y @F5 @sf(Non-stand)o(ard)f(Login.)20 b @F9 @sf(Some)c
(net)o(w)o(ork)g(access)q 17 x(metho)q(ds)h(do)f(not)g(read)g(or)g(resp)q
(e)q(ct)-1327 50 y(the)c(startup)g(\014les.)18 b(Among)10 b(these)j(are)f
(man)o(y)e(\014le)i(transfer)g(systems.)18 b(I)11 b(ha)o(v)o(e)h(often)-1329
49 y(b)q(een)h(able)e(to)g(gain)f(privileged)h(access)i(to)e(a)g(mac)o
(hine)g(b)o(y)g(using)g(the)h(the)g(login)e(and)-1329 50 y(passw)o(ord)k
(from)f(a)h(captiv)o(e)f(accoun)o(t)i(with)e(the)h(\014le)g(transfer)g
(facilit)o(y)e(that)i(didn't)-1329 50 y(kno)o(w)i(that)g(these)h(accoun)o
(ts)g(w)o(eren't)g(\\normal.)o(")23 b(Man)o(y)16 b(\014le)g(transfer)h
(faciliti)o(es)-1329 50 y(ha)o(v)o(e)d(metho)q(ds)g(for)g(disabling)e(the)j
(use)g(of)e(selected)j(accoun)o(ts.)-1118 75 y @F5 @sf(In)o(ter)o(rup)o
(ts.)j @F9 @sf(It)13 b(is)g(sad)g(that)g(a)f(n)o(um)o(b)q(er)h(of)g(the)g
(captiv)o(e)g(accoun)o(ts)h(w)o(on't)e(withstand)h(a)-1329 50 y(single)h
(in)o(terrupt)g(or)g(susp)q(end)i(c)o(haracter.)j(T)m(ry)14 b(it)f(just)h
(to)g(b)q(e)h(sure.)-1135 71 y(Making)f(sure)i(that)f(y)o(ou)f(ha)o(v)o(e)h
(not)f(made)h(an)o(y)f(of)h(the)g(ab)q(o)o(v)o(e)g(listed)g(mistak)o(es)f
(is)h(of)-1432 50 y(course)d(not)e(su\016cien)o(t)h(for)g(ha)o(ving)f(a)g
(p)q(erfectly)i(safe)f(system.)18 b(Av)o(oiding)9 b(these)j(mistak)o(es,)
-1432 49 y(or)i(a)o(v)o(oiding)f(the)i(use)g(of)f(captiv)o(e)h(accoun)o
(ts)g(at)g(all,)e(is)h(enough)h(to)g(discourage)g(the)g(v)n(ast)-1432 50 y
(ma)r(jorit)o(y)d(of)h(attac)o(k)o(ers.)-328 50 y(Eac)o(h)f(op)q(erating)h
(system)g(for)f(eac)o(h)h(v)o(endor)g(has)f(some)h(particular)f(default)g
(accoun)o(ts)-1431 50 y(that)h(need)i(to)f(b)q(e)h(disabled)e(or)h
(otherwise)h(protected.)-872 104 y @F5 @sf(2.4.1)47 b(Unix)-247 77 y @F9 @sf
(Under)14 b(unix)g(there)h(are)f(a)g(lot)f(of)h(p)q(ossible)g(default)f
(accoun)o(ts)i(since)g(there)g(are)f(so)g(man)o(y)-1432 50 y(di\013eren)o
(t)19 b(v)o(endors.)32 b(Belo)o(w)19 b(is)f(a)g(partial)g(list)g(of)f(the)i
(default)g(accoun)o(ts)g(that)f(I)h(ha)o(v)o(e)-1432 50 y(success)q(fully)
14 b(used)g(in)g(the)g(past)g(that)g(are)h(not)e(men)o(tioned)h(ab)q(o)o
(v)o(e.)-382 124 y(14)-999 b
14 @eop1
13 @bop0
@F2 @sf
[<
7FF8007FF8000F80000F80000F80000F80000F80000F80000F80000F80000F80000F80000F
80000F80000F80000F80000F80000F80000F80000F8000FFFC00FFFC000F80000F80000F80
000F80000F80000F80000F83C00F87E007C7E003C7E001E3E000FFC0003F80>
19 35 -1 34 17] 102 @dc
[<
0007FC0000003FFF800000FC07E00003F001F80007E000FC000FC0007E001F80003F003F80
003F803F00001F807F00001FC07F00001FC07E00000FC0FE00000FE0FE00000FE0FE00000F
E0FE00000FE0FE00000FE0FE00000FE0FE00000FE0FE00000FE0FE00000FE07E00000FC07E
00000FC07F00001FC03F00001F803F00001F801F80003F001F80003F000FC0007E0007E000
FC0003F001F80000FC07E000003FFF80000007FC0000>
35 34 -3 33 42] 79 @dc
[<
1F807FE078F8FC7CFC3CFC3E783E003E003E003E003E003E003E003E003E003E003E003E00
3E003E003E003E003E003E003E003E003E003E003E003E03FE03FE00000000000000000000
000000000038007C00FE00FE00FE007C0038>
15 46 3 35 17] 106 @dc
@F5 @sf
[<
000FF818007FFE7801FC07F807E001F80F8001F81F0001F83F0001F83E0001F87E0001F87C
0001F8FC007FFFFC007FFFFC000000FC000000FC000000FC000000FC000000FC0000007C00
00187E0000183E0000383F0000381F0000780F80007807E001F801FC07F8007FFE38000FF0
08>
32 28 -3 27 38] 71 @dc
@F4 @sf
[<
3FFE007FFF003FFE0001C00001C00001C00001C00001C00001C00001C00001C00001C00001
C00001C00001C000FFFF00FFFF007FFF0001C00001C00001C30001E78000FF80007F80001F
00>
17 25 -1 24 22] 102 @dc
@F4 @sf
[<
063C000EFF000FFF800F83C00F01E00E00E00E00700E00700E00700E00700E00700E00700E
00E00F00E00F83C00FFF800EFF000E3E000E00000E00000E00000E00007E0000FE00007E00
00>
20 25 0 24 22] 98 @dc
13 @eop0
0 0 13 @bop1 262 307 a @F9 @sf(is)13 b(near)i(expiration.)-268 50 y(Also)f
(VMS)g(securit)o(y)h(auditing)e(mak)o(es)h(the)g(remo)o(v)n(al)f(of)g
(expired)i(users)h(a)d(bad)h(idea.)-1432 50 y(Because)f(one)f(of)f(the)h
(most)g(common)e(errors)j(is)f(t)o(yping)f(the)h(passw)o(ord)g(on)f(the)i
(username)-1431 50 y(line,)j(DEC)g(suppres)q(ses)q 18 x(an)o(y)g(in)o(v)n
(ali)o(d)g(username)h(from)f(the)h(logs)f(un)o(til)g(a)g(breaking)h(at-)
-1432 49 y(tempt)f(is)h(detecte)q(d.)27 b(But)18 b(if)d(the)j(username)f
(is)g(v)n(alid)e(and)h(the)h(passw)o(ord)g(wrong,)g(the)-1431 50 y
(username)d(is)g(logged.)-354 116 y @F2 @sf(2.4)55 b(Default)18 b(Accoun)n
(ts)i(and)f(Ob)s(jects)-867 77 y @F9 @sf(One)12 b(of)f(the)h(jo)o(ys)f(of)g
(man)o(y)g(op)q(erating)h(systems)g(is)g(that)g(they)g(come)g(complete)g
(with)f(pre-)-1431 50 y(built)i(accoun)o(ts)j(and)e(other)h(ob)r(jects.)
21 b(Man)o(y)14 b(op)q(erating)h(systems)h(ha)o(v)o(e)e(enabled)h(either)
-1431 50 y(accoun)o(ts)f(or)g(prelogin)f(facilities)g(that)h(presen)o(t)i
(securit)o(y)e(risks.)-963 49 y(The)i(standard)h(\\accoun)o(ts")f(for)g
(an)f(attac)o(k)o(er)i(to)f(try)g(on)g(an)o(y)f(system)i(include)f(the)-1431
50 y(follo)o -1 x(wing)o(:)-174 92 y @F5 @sf(Op)q(en.)k @F9 @sf(A)10 b
(facilit)o(y)e(to)i(automatically)e(create)k(new)f(accoun)o(ts.)17 b(It)
11 b(is)f(often)g(set)h(b)o(y)f(default)-1329 49 y(to)i(not)g(require)h
(either)f(a)g(passw)o(ord)g(or)g(system)h(manager)e(appro)o(v)n(al)g(to)h
(create)h(the)-1328 50 y(new)i(accoun)o(ts.)-356 83 y @F5 @sf(Help.)21 b
@F9 @sf(Sometimes)12 b(the)i(pre-login)e(help)h(is)g(to)q(o)g(helpful.)k
(It)c(ma)o(y)f(pro)o(vide)h(phone)g(n)o(um-)-1329 50 y(b)q(ers)e(or)f
(other)g(information)e(that)h(y)o(ou)h(w)o(ouldn't)e(w)o(an)o(t)h(to)h
(adv)o(ertise)g(to)g(non-users.)-1431 83 y @F5 @sf(T)l(elnet.)20 b @F9 @sf
(Or)10 b(T)m(erminal.)16 b(An)10 b(accoun)o(t)h(designed)g(to)f(let)g
(someone)g(just)h(use)g(this)f(mac)o(hine)-1329 50 y(as)g(a)g(stepping)h
(stone)g(to)f(get)g(to)g(another)h(mac)o(hine.)16 b(It)10 b(is)g(useful)g
(for)g(hiding)f(origins)-1329 50 y(of)14 b(an)f(attac)o(k.)-333 83 y @F5 @sf
(Guest)o(.)20 b @F9 @sf(Man)o(y)13 b(op)q(erating)h(systems)h(are)f(shipp)q
(ed)h(with)f(guest)g(accoun)o(ts)h(enabled.)-1359 83 y @F5 @sf(Demo.)20 b
@F9 @sf(Not)15 b(only)f(are)i(sev)o(eral)g(op)q(erating)f(systems)h(shipp)q
(ed)g(with)f(a)g(demo)g(accoun)o(t,)-1329 50 y(but)g(when)g(installing)e
(some)i(pac)o(k)n(ages,)f(a)h(demo)f(accoun)o(t)i(is)e(automatically)o 14 x
(cre-)-1328 49 y(ated.)34 b(All)18 b(to)q(o)h(often)g(the)g(demo)g(accoun)o
(t)h(has)f(write)g(access)i(to)e(some)g(of)f(the)-1328 50 y(system)d
(binaries)f(\(executable)h(\014les\).)-713 83 y @F5 @sf(Games.)20 b @F9 @sf
(Or)11 b(Pla)o(y)m(.)16 b(Often)11 b(the)h(passw)o(ord)f(is)g(Games)g
(when)g(the)g(accoun)o(t)h(name)f(is)f(Pla)o(y)m(.)-1330 50 y(In)j(some)f
(cases)i(this)e(accoun)o(t)h(has)g(the)g(abilit)o(y)d(to)j(write)f(to)h
(the)g(Games)f(directory)-1328 50 y(allo)o(wing)j(an)i(attac)o(k)o(er)h
(to)f(not)g(only)f(pla)o(y)g(games,)i(and)f(sno)q(op)g(around,)g(but)h(to)
-1329 50 y(also)c(insert)g(T)m(ro)r(jan)f(horses)i(at)f(will.)-692 83 y
@F5 @sf(Mail.)22 b @F9 @sf(Quite)15 b(often)h(a)f(system)h(is)f(shipp)q
(ed)h(with)f(or)g(is)g(giv)o(en)g(an)g(unpassw)o(orded)h(mail)-1330 49 y
(accoun)o(t)g(so)f(that)g(p)q(eople)h(can)f(rep)q(ort)i(problems)e(\(lik)o
(e)f(their)i(inabili)o(t)o(y)e(to)h(login\))-1330 50 y(without)d(logging)o
11 x(in.)17 b(In)11 b(t)o(w)o(o-thirds)h(of)f(the)i(systems)g(that)f(I)f
(ha)o(v)o(e)h(observ)o(ed)h(with)-1329 50 y(suc)o(h)k(an)f(accoun)o(t,)h
(it)f(w)o(as)g(p)q(ossible)h(to)f(break)h(in)o(to)e(the)i(main)e(system)j
(through)-1329 50 y(this)c(accoun)o(t.)-273 91 y(Often)h(these)i(default)d
(accoun)o(ts)i(are)f(normal)f(accoun)o(ts)i(with)f(an)f(initiali)o(zation)g
(\014le)-1432 50 y(\()p @F4 @sf(.login)p @F9 @sf(,)o 17 x @F4 @sf
(.profile)p @F9 @sf(,)o 17 x @F4 @sf(login.cmd)p @F9 @sf(,)o 17 x @F4 @sf
(login.bat)p @F9 @sf(,)o 17 x(etc.\))29 b(or)18 b(alternate)f(command)g
(line)-1432 50 y(in)o(terpreter)f(to)f(mak)o(e)g(it)g(do)f(something)h
(non-standard)g(or)g(restrict)q 16 x(its)g(action.)21 b(These)-1430 50 y
(are)d(generally)g(called,)g(\\Captiv)o(e)g(Accoun)o(ts")h(or)f(\\T)m
(urnk)o(ey)g(Logins.")30 b(Setting)19 b(up)f(a)-1432 49 y(restricted)g
(login)c(so)i(that)g(it)g(sta)o(ys)g(restrict)q(ed)i(is)d(v)o(ery)i(hard.)
24 b(It)16 b(should)g(of)g(course)h(b)q(e)-1431 50 y(v)o(ery)d(easy)m(,)f
(but)h(in)g(most)f(cases)j(a)d(mistak)o(e)h(is)f(made.)-163 165 y(13)-999 b
13 @eop1
12 @bop0
@F5 @sf
[<
0FE0001FF800383C00780F007C07007C07803807C00003C00003C00003E003E3E00E1BE03C
0BE03807E07807E0F803E0F803E0F803E0F803E0F803C0F803C07803C07807803C07801E0F
000FFE0003F800>
19 27 -2 26 24] 57 @dc
@F5 @sf
[<
03F8000F1E001C07003C07803803807803C07803C0F803E0F803E0F803E0F803E0F803E0F8
03E0F803E0F803E0F803E0F803E0F803E0F803E07803C07803C07803C03803803C07801C07
000F1E0003F800>
19 27 -2 26 24] 48 @dc
12 @eop0
0 0 12 @bop1 262 307 a @F5 @sf(2.1.9)47 b(The)16 b(T)l(ruth)e(ab)q(out)h
(P)o(assw)o(ord)f(Aging)-850 77 y @F9 @sf(Some)i(facilities)g(force)h
(users)h(to)e(c)o(hange)h(their)g(passw)o(ords)h(on)e(a)h(regular)f
(basis.)27 b(This)-1432 50 y(has)15 b(the)g(b)q(ene\014cial)g(side)g(e\013ec)q
(t)h(of)e(remo)o(ving)g(dorman)o(t)g(accoun)o(ts.)22 b(It)15 b(is)g(also)f
(the)i(case)-1431 49 y(that)d(it)h(limits)e(the)j(utilit)o(y)e(of)g(a)g
(stolen)i(passw)o(ord.)-760 50 y(While)i(these)i(are)g(go)q(o)q(d)e(and)h
(w)o(orth)o(while)g(e\013ects,)i(most)e(system)h(administrators)-1432 50 y
(b)q(eliev)o(e)d(that)g(c)o(hanging)g(passw)o(ords)h(on)f(a)g(regular)g
(basis)g(mak)o(es)g(it)g(harder)h(for)f(an)g(at-)-1432 50 y(tac)o(k)o(er)c
(to)g(guess)i(them.)j(In)12 b(practice,)i(for)d(an)h(attac)o(k)o(er)h
(that)f(has)h(gotten)f(the)h(crypt)g(text)-1431 50 y(of)g(the)j(passw)o
(ord)f(\014le,)f(he)h(generally)f(only)g(needs)i(a)e(few)h(hours)g(to)f
(\014nd)h(the)g(passw)o(ords)-1431 49 y(of)d(in)o(terest)j(and)e(hence)h
(frequen)o(t)g(c)o(hanges)g(do)f(not)g(increase)i(the)f(di\016cult)o(y)e
(of)h(his)g(task.)-1432 50 y(F)m(or)g(the)i(attac)o(k)o(er)g(who)f(is)g
(guessing)h(without)e(a)h(cop)o(y)h(of)e(the)i(encrypt)h(passw)o(ord,)e
(ev)o(en)-1431 50 y(c)o(hanging)f(the)i(passw)o(ord)g(ev)o(ery)g(min)o
(ute)g(w)o(ould)e(at)h(most)h(double)f(the)h(e\013ort)g(he)g(w)o(ould)-1432
50 y(b)q(e)f(required)h(to)f(exp)q(end.)-410 108 y @F5 @sf(2.1.10)47 b(Ho)o
(w)17 b(do)e(y)o(ou)g(c)o(hange)g(a)h(passw)o(ord)-825 76 y @F9 @sf(Users)h
(should)f(b)q(e)g(told)g(to)g(c)o(hange)g(their)h(passw)o(ords)f(whenev)o
(er)i(they)e(ha)o(v)o(e)g(reason)h(to)-1432 50 y(exp)q(ect)h(that)f
(another)g(p)q(erson)g(has)g(learned)g(their)h(passw)o(ords)f(and)g(after)f
(eac)o(h)i(use)f(of)-1432 50 y(an)f(\\un)o(trusted")h(mac)o(hine.)26 b
(Unfortunately)16 b(man)o(y)g(users)i(are)f(neither)g(told)f(this,)h(nor)
-1432 50 y(ho)o(w)11 b(to)i(c)o(hange)f(the)h(passw)o(ord.)18 b(Be)13 b
(sure)h(b)q(oth)e(to)h(tell)f(y)o(ou)f(users)j(ho)o(w)e(to)g(c)o(hange)h
(their)-1431 50 y(passw)o(ords)19 b(and)f(include)h(these)h(instructions)g
(in)e(the)h(on-line)f(do)q(cumen)o(tation)h(in)f(an)-1432 49 y(ob)o(vious)
11 b(place.)17 b(Users)q 13 x(should)12 b(not)g(b)q(e)h(exp)q(ected)h(to)e
(realize)g(the)h(passw)o(ord)f(c)o(hanging)g(is)-1432 50 y(\(1\))j(an)f
(option)h(for)f(directory)i(main)o(tenance)f(under)h(TOPS-20)f(and)g(man)o
(y)f(v)o(ersions)h(of)-1432 50 y(CMS,)e(\(2\))h(is)g(sp)q(elled)g @F4 @sf
(passwd)f @F9 @sf(under)h(unix)g(or)g(\(3\))f(is)h(an)g(option)f(to)h
@F4 @sf(set)f @F9 @sf(under)i(VMS.)-1416 116 y @F2 @sf(2.2)55 b(Old)19 b
(P)n(assw)n(ord)h(Files)-597 77 y @F9 @sf(It)14 b(is)g(often)g(the)h(case)g
(at)f(sites)h(running)f(shado)o(w)g(passw)o(ord)h(systems,)g(someone)f
(forgets)-1431 50 y(to)f(prev)o(en)o(t)i(the)f(shado)o(w)f(passw)o(ord)h
(\014le)g(from)f(b)q(eing)g(publically)f(readable.)19 b(While)13 b(this)
-1432 50 y(is)e(easy)i(to)f(prev)o(en)o(t)g(b)o(y)g(ha)o(ving)f(a)h(batc)o
(h)g(job)f(that)h(routinely)g(rev)o(ok)o(es)h(read)f(p)q(ermissions)-1431
49 y(that)f(w)o(ere)h(acciden)o(tly)g(gran)o(ted,)g(there)g(is)g(an)f(in)o
(teresting)h(v)n(arian)o(t)e(of)h(this)g(problem)h(that)-1432 50 y(is)h
(harder)i(to)f(prev)o(en)o(t.)-308 50 y(When)20 b(passw)o(ord)g(\014les)g
(are)g(edited,)i(some)e(editors)g(lea)o(v)o(e)f(bac)o(kup)h(\014les)g
(that)g(are)-1431 50 y(publically)o 16 x(readable.)27 b(In)16 b(fact)h
(when)g(a)g(new)g(system)h(is)e(installed)g(a)h(passw)o(ord)g(\014le)g(is)
-1432 50 y(often)11 b(created)h(b)o(y)f(extracting)h(informatio)o(n)e
(from)g(the)i(passw)o(ord)g(\014les)f(of)g(man)o(y)f(existing)-1432 49 y
(systems.)18 b(The)c(collection)e(of)h(passw)o(ord)g(\014les)h(is)f(all)e
(to)q(o)i(often)g(left)g(publically)e(readable)-1431 50 y(in)k(some)h
(forgotten)g(disk)f(area)h(where)h(it)f(is)f(found)h(b)o(y)f(an)h(attac)o
(k)o(er)g(w)o(eeks)h(or)f(mon)o(ths)-1432 50 y(later.)g(The)11 b(attac)o
(k)o(er)g(then)h(uses)f(this)g(data)f(to)g(break)h(in)o(to)f(a)g(large)g
(n)o(um)o(b)q(er)h(of)f(mac)o(hines.)-1432 116 y @F2 @sf(2.3)55 b(Dorman)n
(t)19 b(Accoun)n(ts)-589 77 y @F9 @sf(While)14 b(requiring)h(ann)o(ual)f
(passw)o(ord)i(c)o(hanges)g(do)q(es)g(ev)o(en)o(tually)f(remo)o(v)o(e)g
(dorman)o(t)g(ac-)-1432 50 y(coun)o(ts,)h(it)g(is)g(w)o(orth)o(while)f(to)h
(try)h(a)e(more)h(activ)o(e)h(approac)o(h)f(for)f(their)i(remo)o(v)n(al.)
23 b(The)-1431 49 y(exact)14 b(nature)h(of)e(this)h(approac)o(h)g(will)e
(v)n(ary)h(from)h(cen)o(ter)h(to)f(cen)o(ter.)-1111 108 y @F5 @sf(2.3.1)
47 b(VMS)-253 77 y @F9 @sf(In)19 b(VMS,)h(the)h(accoun)o(t)f(expiration)g
(\014eld)g(is)f(a)h(go)q(o)q(d)g(metho)q(d)g(of)f(retiring)h(dorman)o(t)
-1432 50 y(accoun)o(ts,)11 b(but)h(care)f(should)g(b)q(e)h(tak)o(en)f(as)g
(no)g(adv)n(ance)g(notice)g(is)g(giv)o(en)f(that)h(an)g(accoun)o(t)-736
157 y(12)-999 b
12 @eop1
11 @bop0
@F5 @sf
[<
03F8001FFE003E07807803807801C0F001E0F001E0F001E0F003E0F007E0781FE0387FC01D
FF8007FF800FFE001FFC003FFE007FC7007F83807E03C07803C07803C03803C03807801E0F
800FFE0003F800>
19 27 -2 26 24] 56 @dc
[<
07800FC00FC00FC00FC007800000000000000000030003000300030003000180018001C000
E00070003C003E701FF81FF81FF01F601E303C0FF0>
16 29 -3 28 23] 63 @dc
11 @eop0
0 0 11 @bop1 262 307 a @F9 @sf(generated)14 b(passw)o(ords,)f(y)o(ou)f
(should)h(consider)g(running)g(an)f(o)q(ccasional)g(sw)o(eep)i(o)o(v)o(er)f
(the)-1431 50 y(en)o(tire)k(user)h(\014le)f(system)h(lo)q(oking)e(for)g
(scripts)j(con)o(taining)d(these)i(passw)o(ords.)28 b(Prop)q(er)-1430 50 y
(selection)12 b(of)f(y)o(our)g(passw)o(ord)h(generation)g(algorithm)e(can)i
(mak)o(e)f(this)h(m)o(uc)o(h)f(easier)i(than)-1432 50 y(it)g(sounds.)-113
49 y(As)d(with)f(almost)g(all)f(passw)o(ord)i(issues,)h(the)g(user)f(of)f
(a)h(single)f(computer)h(cen)o(ter)q 11 x(whic)o(h)-1432 50 y(giv)o(es)h
(him)g(one)i(mac)o(hine)e(generated)j(passw)o(ord)e(for)g(access)h(to)f
(all)f(the)i(mac)o(hines)f(he)g(will)-1433 50 y(use)k(will)f(not)g(ha)o(v)o
(e)h(nearly)g(the)g(lev)o(el)g(of)f(di\016cult)o(y)g(as)h(the)g(user)h
(who)e(uses)i(computers)-1430 50 y(at)c(man)o(y)h(cen)o(ters)i(and)e(migh)o
(t)f(ha)o(v)o(e)h(to)g(remem)o(b)q(er)h(dozens)g(or)f(ev)o(en)h(h)o
(undreds)g(of)f(suc)o(h)-1431 50 y(passw)o(ords.)-193 108 y @F5 @sf(2.1.7)
47 b(The)16 b(Sorro)o(ws)e(of)i(Sp)q(ecial)g(Purp)q(ose)e(Hardw)o(are)-1034
76 y @F9 @sf(With)g(the)i(problems)f(of)f(broadcast)i(net)o(w)o(orks)g
(and)f(user)h(selecting)g(bad)f(passw)o(ords)h(or)-1432 50 y(reb)q(elling)d
(at)h(mac)o(hine)g(generated)h(passw)o(ord,)f(some)g(facilities)f(ha)o(v)o
(e)h(turned)h(to)e(sp)q(ecial)-1431 50 y(purp)q(ose)e(hardw)o(are)g(that)g
(generates)h(k)o(eys)f(dynamically)l(.)16 b(Generally)10 b(these)i
(devices)g(lo)q(ok)-1433 50 y(lik)o(e)h(small)g(calculators)i(\(or)f
(smart)h(card\))g(and)f(when)h(a)f(user)h(en)o(ters)h(a)e(short)h(passw)o
(ord)-1431 49 y(\(often)e(four)f(digits\))h(they)g(giv)o(e)g(him)f(a)g
(passw)o(ord)i(that)f(is)f(go)q(o)q(d)h(for)g(a)f(single)h(use.)18 b(If)
13 b(the)-1431 50 y(p)q(erson)e(w)o(an)o(ts)g(to)g(login)e(again,)h(he)h
(m)o(ust)g(get)g(a)f(new)h(passw)o(ord)h(from)e(his)g(k)o(ey-generator.)
-1369 50 y(With)i(a)g(few)g(exceptions,)i(the)f(tec)o(hnology)f(of)g
(these)h(devices)h(w)o(orks)f(v)o(ery)f(w)o(ell.)17 b(The)-1431 50 y
(exceptions)d(include)g(systems)h(with)f(bad)g(time)f(sync)o(hronization,)g
(unreliable)h(or)g(fragile)-1433 50 y(hardw)o(are)g(or)g(v)o(ery)h(short)f
(generated)i(k)o(eys.)j(In)14 b(at)g(least)g(one)h(case)g(the)g(generated)g
(k)o(eys)-1431 49 y(w)o(ere)e(so)g(short)g(that)g(it)f(w)o(as)h(faster)g
(to)f(attac)o(k)h(the)g(mac)o(hine)g(b)o(y)f(guessing)h(the)g(passw)o(ord)
-1431 50 y(\\1111")f(than)i(b)o(y)f(guessing)i(at)e(the)i(user)g
(generated)g(passw)o(ords)g(it)e(replaced.)-1192 50 y(Despite)19 b(the)h
(tec)o(hnology)e(of)g(these)j(devices)e(w)o(orking)f(w)o(ell)g(and)h(the)g
(installation)-1433 50 y(generally)14 b(b)q(eing)h(almost)f(painless,)h
(there)h(are)f(t)o(w)o(o)g(serious)g(problems)g(with)g(their)g(use.)-1431
50 y(The)e(\014rst)h(is)f(cost.)19 b(Buying)12 b(a)h(device)h(for)f(a)g
(user)h(of)f(large)g(cen)o(ter)i(can)e(easily)g(cost)h(more)-1432 50 y
(than)e(an)f(additional)g(mainfram)o(e.)17 b(The)12 b(second)h(problem)f
(is)g(more)g(serious.)18 b(This)12 b(is)g(one)-1431 49 y(of)j(user)j
(reluctance.)27 b(Most)16 b(users)q 17 x(are)h(un)o(willing)d(to)j(carry)g
(an)f(extra)h(device)g(and)f(the)-1431 50 y(p)q(eople)d(who)g(are)h(users)h
(of)d(man)o(y)h(cen)o(ters)i(are)f(ev)o(en)g(less)g(willi)o(ng)e(to)h
(hold)g(a)g(dozen)h(suc)o(h)-1431 50 y(devices)h(and)e(remem)o(b)q(er)i
(whic)o(h)f(is)g(whic)o(h.)-632 50 y(In)h(one)g(cen)o(ter,)i(these)f
(devices)g(w)o(ere)g(used)g(only)e(for)h(privileged)g(accesse)q(s)h
(initiated)-1432 50 y(from)d(insecure)i(lo)q(cations.)j(Only)c(a)g
(handful)f(of)g(them)h(had)g(to)g(b)q(e)h(made.)j(\(Being)c(inno-)-1432
49 y(v)n(ativ)o(e,)h(the)j(cen)o(ter)g(sta\013)f(built)e(them)i(from)f
(old)g(programmable)f(calculators.\))26 b(They)-1431 50 y(w)o(ere)12 b
(used)h(only)e(b)o(y)h(the)h(\\on)e(call")g(system)i(programmer)f(when)g
(handling)f(emergencies)-1430 50 y(and)i(pro)o(vided)h(some)g(securit)o(y)h
(without)e(b)q(eing)h(to)g(obtrusiv)o(e.)-1005 108 y @F5 @sf(2.1.8)47 b
(Is)16 b(W)l(riting)g(P)o(assw)o(ords)o 15 x(Do)o(wn)f(that)g(Bad?)-951
77 y @F9 @sf(One)d(of)g(the)g(\014rst)h(things)f(that)g(w)o(e)g(w)o(ere)h
(all)e(told)h(when)g(w)o(e)g(b)q(egan)g(using)g(timesharing)g(is)-1432 49 y
(that)i(one)g(should)f(nev)o(er)i(write)g(do)o(wn)e(passw)o(ords.)19 b(I)
14 b(agree)h(that)f(the)g(users)i(should)e(not)-1432 50 y(record)k(their)g
(passw)o(ords)g(on-line.)27 b(There)19 b(ha)o(v)o(e)e(b)q(een)h(a)f(large)g
(n)o(um)o(b)q(er)h(of)e(break-ins)-1431 50 y(enable)c(b)o(y)h(a)f(user)i
(ha)o(ving)e(a)g(batc)o(h)h(script)h(that)e(w)o(ould)g(include)h(a)g
(clear-text)g(passw)o(ord)-1431 50 y(to)g(let)h(them)g(login)f(to)g
(another)i(mac)o(hine.)-620 50 y(On)f(the)h(other)g(hand,)f(ho)o(w)f
(often)i(has)f(y)o(our)g(w)o(allet)f(b)q(een)j(stolen?)j(I)14 b(b)q(eliev)o
(e)h(that)f(a)-1432 49 y(passw)o(ord)e(written)i(do)o(wn)e(in)g(w)o(allet)g
(is)g(probably)g(not)g(a)h(serious)g(risk)g(in)f(comparison)g(to)-1432 50 y
(other)j(the)g(problems)g(including)e(the)j(selection)f(of)f(\\dum)o(b")g
(passw)o(ord)h(that)g(are)g(easier)-1431 50 y(to)e(remem)o(b)q(er.)19 b
(In)14 b(classi\014ed)h(systems,)f(this)g(is,)f(of)h(course,)g(not)g(p)q
(ermitted.)-540 221 y(11)-999 b
11 @eop1
10 @bop0
@F9 @sf
[<
FFFFFFFFFF80>
41 1 0 11 42] 124 @dc
10 @eop0
0 0 10 @bop1 365 307 a @F9 @sf(six)14 b(c)o(haracter)h(passw)o
(ord,)f(this)g(giv)o(es)g(ab)q(out)g(40)f(bits)h(of)g(randomness.)k(It)c
(is)g(v)o(ery)-1328 50 y(hard)g(to)g(guess)h(and)f(p)q(erhaps)h(ev)o(en)f
(harder)h(to)f(remem)o(b)q(er.)-962 64 y(Often)h(a)f(little)f(bit)h(of)f
(p)q(ost)i(pro)q(cessing)g(is)f(done)g(on)g(these)h(passw)o(ords)g(as)f(w)o
(ell)f(as)-1328 49 y(on)k(the)h(random)f(syllables)f(discusse)q(d)i(b)q
(elo)o(w.)28 b(This)17 b(p)q(ost)h(pro)q(cessing)g(remo)o(v)o(es)-1328 50 y
(passw)o(ords)j(that)e(migh)o(t)g(pro)o(v)o(e)g(o\013ensiv)o(e)h(to)g(the)g
(user.)36 b(When)20 b(a)f(p)q(oten)o(tially)-1330 50 y(o\013ensiv)o(e)14 b
(passw)o(ord)f(is)f(generated,)i(the)g(program)e(simply)f(tries)j(again.)i
(The)d(user)-1327 50 y(often)h(b)q(eha)o(v)o(es)g(the)f(same)h(w)o(a)o(y)e
(and)h(runs)h(the)g(randomizer)f(o)o(v)o(er)h(and)f(o)o(v)o(er)g(again)-1330
50 y(un)o(til)i(a)g(passw)o(ord)h(that)g(seems)h(less)f(random)f(and)h
(more)f(memorable)g(to)h(him)f(is)-1329 50 y(selecte)q(d.)33 b(In)18 b
(principle,)h(the)g(clev)o(er)g(user)h(could)e(write)h(a)f(program)g(that)g
(k)o(ept)-1328 49 y(requesting)g(new)f(random)f(passw)o(ords)h(un)o(til)e
(an)i(English)f(w)o(ord)g(w)o(as)g(c)o(hosen)i(for)-1329 50 y(him;)13 b
(this)h(w)o(ould)f(tak)o(e)h(m)o(uc)o(h)f(to)q(o)h(long)f(to)h(b)q(e)g
(practical.)-1039 78 y @F5 @sf(Num)o(b)q(ers.)19 b @F9 @sf(Num)o(b)q(ers)
14 b(are)g(a)e(lot)h(lik)o(e)f(letters.)19 b(P)o(eople)14 b(don't)e(try)h
(to)g(pronounce)h(them)-1328 50 y(and)e(there)i(are)e(v)o(ery)h(few)f(n)o
(um)o(b)q(ers)h(that)f(are)h(\\o\013ensiv)o(e")f(p)q(er)h(se.)18 b(An)13 b
(eigh)o(t)f(digit)-1330 49 y(random)e(n)o(um)o(b)q(er)h(has)f(ab)q(out)h
(26)e(bits)i(of)f(randomness)h(in)f(it)g(and)g(is)g(of)g(comparable)-1329
50 y(strength)17 b(to)d(a)h(4)g(c)o(haracter)h(random)f(passw)o(ord)g(c)o
(hosen)h(from)f(the)g(unrestrict)q(ed)-1327 50 y(set)k(of)f(prin)o(table)g
(c)o(haracters.)32 b(\(The)19 b(amoun)o(t)e(of)h(randomness)h(in)e(a)h
(passw)o(ord)-1328 50 y(is)g(the)f(log)g(\(base)h(2\))f(of)g(the)h(n)o(um)o
(b)q(er)g(of)e(p)q(ossible)i(passw)o(ords)g(if)f(they)g(w)o(ere)i(all)-1330
50 y(equally)13 b(lik)o(ely)g(to)h(o)q(ccur.\))-429 63 y(Eigh)o(t)e(digit)g
(n)o(um)o(b)q(ers)h(are)g(hard)g(to)f(remem)o(b)q(er.)19 b(F)m(ortunately)
12 b(\\c)o(h)o(unking")f(them)-1328 50 y(in)o(to)20 b(groups)g(\(as)h
(184|25)o(|75)o(46\))e(mak)o(es)h(this)g(less)h(di\016cult)e(than)i(it)e
(w)o(ould)-1329 50 y(otherwise)c(b)q(e.)-342 78 y @F5 @sf(Syllables.)20 b
@F9 @sf(This)c(is)f(b)o(y)g(far)g(the)h(most)g(common)e(metho)q(d)i
(curren)o(tly)g(used.)24 b(The)16 b(idea)-1329 49 y(is)e(to)g(mak)o(e)g
(non-w)o(ords)g(that)g(are)h(easy)f(to)g(remem)o(b)q(er)h(b)q(ecause)q 15 x
(they)g(sound)f(lik)o(e)-1329 50 y(w)o(ords.)22 b(A)15 b(three)i
(syllable,)d(eigh)o(t)h(letter)h(non-w)o(ord)e(often)h(has)h(ab)q(out)e
(24)h(bits)g(of)-1329 50 y(randomness)j(in)f(it)g(making)e(it)i(not)g
(quite)g(as)h(strong)f(as)g(an)g(8)g(bit)g(n)o(um)o(b)q(er)g(but)-1328 50 y
(hop)q(efully)c(a)h(little)f(bit)h(more)g(memorable.)-695 63 y(The)k
(principle)g(here)g(is)g(go)q(o)q(d.)28 b(In)18 b(fact,)g(this)f(pseudo-w)o
(ord)h(idea)g(should)f(w)o(ork)-1329 50 y(v)o(ery)c(w)o(ell.)j(In)c
(practice)h(it)f(fails)f(miserably)g(b)q(ecause)q 13 x(the)i(standard)f
(programs)g(for)-1329 50 y(generating)k(these)g(pseudo-syllables)f(are)h
(v)o(ery)f(p)q(o)q(or.)22 b(Ev)o(en)o(tually)14 b(w)o(e)h(ma)o(y)f(\014nd)
-1328 50 y(a)g(go)q(o)q(d)f(implemen)o(tation)g(of)g(this)h(and)g(see)h(a)e
(higher)h(lev)o(el)g(of)f(user)i(acceptance)q(.)-1410 77 y @F5 @sf(P)o
(ass)g(Phrases.)k @F9 @sf(P)o(ass)14 b(phrases)g(are)g(the)g(least)f
(common)g(w)o(a)o(y)f(to)h(implemen)o(t)g(mac)o(hine)-1329 50 y(generated)k
(passw)o(ords.)k(The)16 b(idea)e(here)i(is)f(v)o(ery)g(simple.)21 b(T)m
(ak)o(e)14 b(100)g(nouns,)h(100)-1329 50 y(v)o(erbs,)21 b(100)c(adjectiv)o
(e)i(and)g(100)f(adv)o(erbs.)33 b(Generate)20 b(an)e(eigh)o(t)g(digit)g
(random)-1329 50 y(n)o(um)o(b)q(er.)35 b(Consider)20 b(it)f(as)h(four)f(2)g
(digit)g(random)f(n)o(um)o(b)q(ers)j(and)e(use)h(that)g(to)-1329 50 y(pic)o
(k)d(one)g(of)f(eac)o(h)h(of)f(the)h(ab)q(o)o(v)o(e)g(parts)g(of)f(sp)q
(eec)o(h.)28 b(The)17 b(user)h(is)e(then)i(giv)o(en)e(a)-1329 50 y(phrase)g
(lik)o(e)e(\\Orange)h(Cars)g(Sleep)g(Quic)o(kly)m(.")k(The)c(w)o(ords)g
(within)f(eac)o(h)h(list)f(are)-1328 49 y(uniquely)d(determined)h(b)o(y)f
(their)g(\014rst)h(t)o(w)o(o)f(c)o(haracters.)19 b(The)11 b(user)h(ma)o(y)e
(then)i(t)o(yp)q(e)-1328 50 y(the)j(phrase,)f(the)h(\014rst)f(few)g
(letters)h(of)f(eac)o(h)g(w)o(ord)g(or)g(the)g(eigh)o(t)g(digit)f(n)o(um)o
(b)q(er.)-1289 64 y(The)k(phrases)h(are)f(easy)g(to)f(remem)o(b)q(er,)i
(the)f(system)g(remains)g(just)f(as)h(secure)h(if)-1329 50 y(y)o(ou)d
(publish)g(the)h(list)f(of)g(w)o(ords)h(and)f(has)h(ab)q(out)f(26)g(bits)h
(of)e(randomness.)24 b(One)-1328 49 y(can)12 b(adapt)f(the)h(system)g(do)o
(wn)g(to)f(three)i(w)o(ords)e(with)g(20)g(bits)h(of)f(randomness)h(and)-1329
50 y(still)h(b)q(e)i(su\016cien)o(tly)f(safe)g(for)f(most)h(applications.)
-864 78 y(I)h(b)q(eliev)o(e)g(that)g(mac)o(hine)f(generated)j(passw)o
(ords)e(are)h(generally)e(a)h(bad)g(solution)f(to)-1432 50 y(the)i(passw)o
(ord)g(problem.)23 b(If)15 b(y)o(ou)g(m)o(ust)h(use)g(them,)g(I)g
(strongly)f(urge)h(the)h(use)f(of)f(pass-)-1431 50 y(phrases)h(o)o(v)o(er)g
(the)g(other)g(metho)q(ds.)24 b(In)15 b(an)o(y)g(ev)o(en)o(t,)h(if)f(y)o
(our)g(cen)o(ter)i(is)f(using)f(mac)o(hine)-737 124 y(10)-999 b
10 @eop1
9 @bop0
9 @eop0
0 0 9 @bop1 262 307 a @F9 @sf(e\016cien)o(t)15 b(than)g(the)g(others)h(b)o
(y)f(ab)q(out)g(a)g(factor)f(of)h(50,000,)o 14 x(it)f(should)h(b)q(e)h
(used)f(to)g(sup-)-1431 50 y(plemen)o(t)f(the)h(others)g(rather)g(than)f
(b)q(e)h(used)g(exclusiv)o(ely)m(.)j(Among)13 b(its)i(man)o(y)e(virtues)i
(is)-1432 50 y(that)i(an)g(automated)g(c)o(hec)o(king)g(system)h(that)g
(reads)g(the)g(encrypted)h(passw)o(ords)f(do)q(es)-1431 50 y(not)d
(require)i(ha)o(ving)d(source)j(for)e(the)i(op)q(erating)e(system)i(or)e
(making)f(mo)q(di\014cation)h(an)-1432 49 y(system)f(mo)q(di\014cations.)
-329 50 y(The)i(second)i(metho)q(d)e(of)g(prev)o(en)o(ting)g(dum)o(b)g
(passw)o(ord)h(is)f(to)g(alter)g(the)h(passw)o(ord)-1431 50 y(c)o(hanging)e
(facilit)o(y)g(so)h(that)g(it)g(do)q(esn't)h(accept)h(dum)o(b)e(passw)o
(ords.)26 b(This)16 b(has)g(t)o(w)o(o)g(big)-1432 50 y(adv)n(an)o(tages)i
(o)o(v)o(er)h(the)h(\014rst)g(metho)q(d.)34 b(The)19 b(\014rst)h(of)e
(these)j(is)e(computational.)32 b(The)-1431 50 y(second)21 b(is)g(more)g
(imp)q(ortan)o(t.)38 b(By)21 b(prev)o(en)o(ting)g(the)h(user)f(from)g
(selecting)g(the)g(p)q(o)q(or)-1431 49 y(passw)o(ord)c(to)g(b)q(egin)g
(with,)g(one)g(do)q(esn't)h(need)g(an)e(administrativ)o(e)g(pro)q(cedure)q
18 x(to)h(get)-1431 50 y(him)d(to)h(c)o(hange)h(it)f(later.)23 b(It)16 b
(can)f(all)g(happ)q(en)h(directly)g(with)f(no)g(h)o(uman)g(in)o(terv)o(en)o
(tion)-1432 50 y(and)e(no)h(apparen)o(t)g(accoun)o(tabilit)o(y)m(.)j(As)e
(a)e(general)h(rule,)g(p)q(eople)h(are)f(not)g(happ)o(y)g(ab)q(out)-1432
50 y(passw)o(ords)f(and)g(really)f(don't)h(w)o(an)o(t)f(to)h(hear)h(from)e
(another)h(p)q(erson)h(that)f(they)h(need)g(to)-1432 50 y(c)o(hange)g
(their)g(passw)o(ord)g(y)o(et)g(again.)-532 50 y(While)g(this)g(c)o(hange)i
(do)q(es)f(require)h(a)e(system)i(mo)q(di\014cation,)o 14 x(it)e(can)h
(often)g(b)q(e)g(done)-1431 49 y(without)f(source)i(co)q(de)g(b)o(y)f
(writing)f(a)h(pre-pro)q(ces)q(sor)h(to)f(scree)q(n)h(the)g(passw)o(ords)g
(b)q(efore)-1431 50 y(the)g(new)g(passw)o(ord)h(is)e(passed)i(to)f(the)g
(existing)g(utilities.)23 b(The)17 b(w)o(eakness)g(in)e(this)h(ap-)-1432
50 y(proac)o(h)c(lies)g(with)f(the)i(users)g(who)f(are)h(not)f(required)h
(to)e(use)i(the)g(new)f(st)o(yle)h(of)e(passw)o(ord)-1431 50 y(facili)o(t)o
(y)m(.)o 30 x(As)19 b(a)e(result,)j(one)e(\014nds)h(that)f(facilities)f
(that)h(use)h(only)e(this)h(metho)q(d)h(ha)o(v)o(e)-1432 50 y(go)q(o)q(d)c
(passw)o(ords)j(for)e(ev)o(ery)o(one)h(except)h(the)f(system)g(sta\013)g
(and)f(new)h(users)h(who)e(ha)o(v)o(e)-1432 49 y(had)d(their)i(initial)o
12 x(passw)o(ords)g(set)g(b)o(y)f(the)g(system)h(sta\013.)-854 50 y(The)k
(third)g(metho)q(d)g(is)f(designed)i(primarily)d(to)i(catc)o(h)g(the)g
(bad)g(passw)o(ords)h(that)-1432 50 y(are)f(en)o(tered)i(in)d(despite)i
(the)g(use)g(of)e(the)i(second)g(metho)q(d.)34 b(Once)20 b(could)f(c)o
(hec)o(k)h(the)-1431 50 y(\\dum)o(bness")d(of)g(a)h(passw)o(ord)g(with)f
(eac)o(h)h(attempted)g(use.)30 b(While)17 b(this)h(is)f(computa-)-1432 50 y
(tionall)o(y)12 b(more)h(exp)q(ensiv)o(e)i(than)e(the)h(second)g(metho)q
(d,)f(it)g(generally)g(catc)o(hes)i(ev)o(ery)o(one.)-1431 49 y(Ev)o(en)e
(the)h(system)f(programmers)h(tend)f(to)g(use)h(the)g(standard)f(login)f
(utilit)o(y)l(.)17 b(It)c(has)g(the)-1431 50 y(nice)k(feature)h(of)e(lo)q
(c)o(king)g(out)i(an)o(y)o(one)e(that)h(\014nds)h(a)f(w)o(a)o(y)f(to)h
(circum)o(v)o(en)o(t)h(the)f(second)-1430 50 y(metho)q(d.)33 b(This)19 b
(generally)g(requires)h(a)f(small)f(amoun)o(t)g(of)h(system)h(source)g
(and)f(risks)-1431 50 y(causing)13 b(em)o(barrassmen)o(t)i(to)f(\\to)q(o)f
(clev)o(er")i(system)f(sta\013)h(mem)o(b)q(ers.)-1057 50 y(In)c(terms)i
(of)e(dum)o(b)g(passw)o(ords,)h(there)h(are)f(a)f(n)o(um)o(b)q(er)h(of)f
(\\attac)o(k)g(lists".)17 b(An)12 b(attac)o(k)-1432 50 y(list)e(is)h(a)g
(list)f(of)h(common)f(passw)o(ords)i(that)f(an)g(attac)o(k)o(er)g(could)g
(use)h(to)f(try)g(to)g(login)e(with.)-1432 49 y(Sev)o(eral)18 b(of)g
(these)i(ha)o(v)o(e)e(b)q(een)i(published)f(and)f(more)g(are)h(constan)o
(tly)g(b)q(eing)f(formed.)-1432 50 y(These)d(lists)f(are)h(used)h(for)e
(the)h(automated)f(passw)o(ord)h(guesser)h(and)e(they)h(ma)o(y)e(also)h(b)q
(e)-1431 50 y(used)f(directly)f(in)g(the)g(second)i(and)e(third)g(metho)q
(d)g(describ)q(ed)i(ab)q(o)o(v)o(e.)j(With)12 b(the)g(second)-1430 50 y
(and)j(third)h(metho)q(d)g(one)g(ma)o(y)f(also)g(use)h(criteria)h
(including)d(minim)o(um)g(length,)i(use)g(of)-1432 50 y(non-alphab)q(etic)f
(c)o(haracters)q(,)i(etc.)26 b(Finally)m(,)o 15 x(information)15 b(ab)q
(out)h(the)g(individual)e(user)-1430 49 y(found)c(in)h(standard)h(system)g
(\014les)g(can)f(b)q(e)h(scanned)h(to)e(see)i(if)d(the)i(user)g(has)g
(incorp)q(orated)-1431 50 y(this)h(information)f(in)o(to)i(his)f(passw)o
(ord.)-631 108 y @F5 @sf(2.1.6)47 b(Mac)o(hine)16 b(Generate)o(d)e(P)o
(assw)o(ords)-787 77 y @F9 @sf(Most)e(users)i(hate)f(mac)o(hine)f
(generated)i(passw)o(ords.)k(Often)13 b(they)g(are)g(unremem)o(b)q(erable)
-1431 50 y(and)j(accompanied)h(b)o(y)g(a)f(w)o(arning)g(to)h(\\)p @F6 @sf
(Never)k @F9 @sf(write)c(them)g(do)o(wn")f(whic)o(h)h(is)g(a)f(frus-)-1431
49 y(trating)c(com)o(bination.)o 17 x(\(W)m(e)g(will)f(discuss)j(the)f
(the)g(writing)f(do)o(wn)g(of)g(passw)o(ords)i(later.\))-1432 50 y(Mac)o
(hine)g(generated)h(passw)o(ords)f(come)h(in)e(four)h(basic)g(t)o(yp)q(es)
-991 91 y @F5 @sf(Gibb)q(erish)o(.)20 b @F9 @sf(This)14 b(is)g(the)h(most)e
(ob)o(vious)h(approac)o(h)g(to)g(randomness.)19 b(Indep)q(ende)q(n)o(tly)
-1328 50 y(selecte)q(d)d(sev)o(eral)g(c)o(haracters)g(from)f(the)g(set)h
(of)f(all)e(prin)o(table)i(c)o(haracters.)23 b(F)m(or)15 b(a)-727 165 y(9)
-988 b
9 @eop1
8 @bop0
@F9 @sf
[<
FFC0FFF01F003F8006001F0002001E0003003C0001007C000080780000C0F8000041F00000
21E0000023E0000013C000000F8000000F8000000F0000001F0000001E0000003D0000007D
80000078800000F0400001F0600001E0200003E0100003C01800078018000FC03E007FF0FF
C0>
28 28 -1 27 31] 88 @dc
8 @eop0
0 0 8 @bop1 262 307 a @F9 @sf(and)13 b(shado)o(w)h(passw)o(ord)g(\014les.)
-425 50 y(Of)19 b(course,)i(since)f(most)f(of)f(us)h(use)h(broadcast)g
(nets,)h(there)f(is)f(a)g(real)g(danger)g(of)-1432 50 y(passw)o(ords)10 b
(b)q(eing)f(seen)i(as)f(they)g(go)f(o)o(v)o(er)h(the)g(wire.)16 b(This)10 b
(class)g(of)f(problems)g(is)h(discussed)-1430 50 y(in)j(the)h(the)h(Jo)o
(ys)f(of)f(Broadcast)i(app)q(endix)f(and)g(the)g(Guests)h(app)q(endix.)-1112
49 y(Kerb)q(eros,)j(dev)o(elop)q(ed)g(at)e(MIT's)g(A)o(thena)h(pro)r(ject)g
(has)g(an)f(alternativ)o(e)h(means)f(of)-1432 50 y(handling)11 b(passw)o
(ords.)19 b(It)13 b(allo)o(ws)f(one)h(to)g(remo)o(v)o(e)g(all)f(the)i
(passw)o(ords)g(from)e(the)i(normal)-1433 50 y(use)e(mac)o(hines)f(and)g
(to)h(nev)o(er)g(ha)o(v)o(e)f(them)h(broadcasted)g(in)f(clear)h(text.)18 b
(While)11 b(Kerb)q(eros)-1430 50 y(is)16 b(vulnerable)g(to)h(a)f(n)o(um)o
(b)q(er)g(of)g(in)o(teresting)h(passw)o(ord)g(guessing)g(and)f
(cryptographic)-1431 50 y(attac)o(ks)11 b(and)f(curren)o(tly)i(has)f
(problems)g(with)f(m)o(ulti-home)f(mac)o(hines)i(\(Hosts)h(with)f(more)-1432
49 y(than)16 b(one)h(IP)f(address\),)i(it)e(do)q(es)i(pro)o(vide)e(the)h
(\014rst)g(practical)f(attempt)h(and)f(net)o(w)o(ork)-1431 50 y(securit)o
(y)e(for)g(a)f(univ)o(ersit)o(y)h(en)o(vironmen)o(t.)-619 50 y(An)f(often)g
(o)o(v)o(erlo)q(ok)o(ed)f(issue)i(is)f(that)g(of)g(passw)o(ords)g(for)g
(games.)18 b(Man)o(y)12 b(m)o(ultipla)o(y)n(er)-1432 50 y(computer)17 b
(games,)g(suc)o(h)g(as)g(\\Xtrek")h(and)e(\\Empire")h(require)g(the)h
(user)f(to)g(supply)g(a)-1432 50 y(passw)o(ord)h(to)g(prev)o(en)o(t)h
(users)h(from)d(imp)q(ersonating)g(one)i(another)f(during)g(the)h(game.)
-1433 50 y(Generally)11 b(these)j(passw)o(ords)f(are)g(stored)g(b)o(y)g
(the)g(game)e(itself)h(and)h(are)f(in)g(principle)h(un-)-1432 49 y
(related)j(to)g(the)g(passw)o(ords)h(that)e(the)i(op)q(erating)f(system)g
(itself)g(uses.)25 b(Unfortunately)m(,)-1433 50 y(these)15 b(passw)o(ords)f
(are)g(generally)g(stored)g(unencrypte)q(d)h(and)f(some)f(users)j(use)e
(the)g(same)-1431 50 y(passw)o(ord)i(as)g(they)h(do)f(for)f(logging)g(in)o
(to)g(the)i(mac)o(hine)f(itself.)24 b(Some)16 b(games)g(no)o(w)f(ex-)-1431
50 y(plicitly)g(w)o(arn)h(the)h(users)h(not)e(use)h(his)g(login)e(passw)o
(ords.)26 b(P)o(erhaps)18 b(these)g(games)e(will)-1433 50 y(ev)o(en)o
(tually)10 b(c)o(hec)o(k)h(that)g(the)g(passw)o(ord)g(is)g(indeed)g(not)f
(the)i(same)e(as)h(the)g(login)f(passw)o(ord.)-1432 107 y @F5 @sf(2.1.4)
47 b(Man)o(y)16 b(faces)g(of)f(a)h(p)q(erson)-629 77 y @F9 @sf(A)10 b
(single)g(individual)o 9 x(can)h(ha)o(v)o(e)f(man)o(y)f(di\013eren)o(t)j
(relationships)e(to)g(a)g(computer)h(at)f(di\013er-)-1431 50 y(en)o(t)k
(times.)20 b(The)15 b(system)g(programmers)f(are)h(acting)f(as)g(\\just)h
(users")g(when)g(they)g(read)-1431 50 y(their)f(mail)e(or)i(pla)o(y)f(a)h
(computer)g(game.)k(In)c(man)o(y)f(op)q(erating)h(systems,)g(a)g(p)q
(erson)h(gets)-1431 50 y(all)c(of)g(his)h(privileges)g(all)f(of)h(the)h
(time.)k(While)11 b(this)i(is)f(not)g(true)h(in)f(Multics,)g(it)g(is)g
(true)h(in)-1432 49 y(the)f(default)g(con\014guration)g(of)g(almost)f(ev)o
(ery)i(other)g(op)q(erating)f(system.)18 b(F)m(ortunately)12 b(a)-1432 50 y
(computer)e(do)q(esn't)h(kno)o(w)f(an)o(ything)f(ab)q(out)h(\\p)q(eople")h
(and)f(hence)h(is)g(p)q(erfectly)g(happ)o(y)f(to)-1432 50 y(allo)n(w)h(a)i
(single)f(p)q(erson)h(ha)o(v)o(e)g(sev)o(eral)g(accoun)o(ts)g(with)f
(di\013eren)o(t)i(passw)o(ords)f(at)g(di\013eren)o(t)-1431 50 y(privilege)f
(lev)o(els.)17 b(This)c(helps)g(to)g(prev)o(en)o(t)h(the)f(acciden)o
(tally)g(disclosure)g(of)g(a)f(privileged)-1432 50 y(passw)o(ord.)27 b(In)
17 b(the)h(case)g(where)g(the)g(privileged)e(user)i(has)g(his)e
(unprivileged)h(accoun)o(t)-1431 49 y(ha)o(ving)11 b(the)j(same)e(passw)o
(ord)i(as)f(his)f(unprivileged)h(accoun)o(t)g(on)f(other)i(mac)o(hines)f
(it)f(will)-1433 50 y(at)k(least)h(b)q(e)h(the)f(case)h(that)f(his)f
(privileges)h(are)g(not)g(compromised)g(when)g(and)g(if)f(this)-1432 50 y
(other)e(mac)o(hine)g(is)f(compromised.)-500 50 y(The)j(one)f(case)h
(where)h(it)e(is)g(esp)q(ecially)g(imp)q(ortan)o(t)g(to)g(ha)o(v)o(e)g
(separate)h(accoun)o(ts)h(or)-1432 50 y(passw)o(ords)c(for)f(a)g(single)g
(individual)f(is)h(for)g(someone)h(who)f(tra)o(v)o(els)h(to)f(giv)o(e)g
(demos.)18 b(One)-1431 49 y(can)g(b)q(e)g(assured)i(that)e(his)g(passw)o
(ord)g(will)f(b)q(e)i(lost)f(when)g(he)h(is)f(giving)e(a)i(demo)g(and)-1432
50 y(something)f(breaks.)32 b(The)19 b(most)f(common)f(form)h(of)f(\\break)n
(age")h(is)g(a)g(problem)g(with)-1432 50 y(duplex)12 b(of)g(of)g(dela)o(y)m
(.)k(It)d(w)o(ould)e(nice)i(if)f(all)f(that)i(w)o(as)f(lost)g(w)o(as)h
(the)g(demo)f(passw)o(ord)h(and)-1432 50 y(for)g(the)i(demo)e(passw)o(ord)i
(to)e(b)q(e)i(of)e(no)h(use)g(to)g(an)g(attac)o(k)o(er.)-975 108 y @F5 @sf
(2.1.5)47 b(Automated)14 b(Chec)o(ks)i(for)f(Dum)o(b)f(P)o(assw)o(ords)-993
76 y @F9 @sf(Automated)h(c)o(hec)o(ks)i(for)e(dum)o(b)g(passw)o(ords)h
(come)f(in)g(three)i(v)n(arieties.)22 b(The)16 b(\014rst)g(is)g(to)-1432
50 y(routinely)g(run)i(a)e(passw)o(ord)i(crac)o(k)o(er)g(against)e(the)i
(encrypted)h(passw)o(ords)e(and)g(notice)-1431 50 y(what)f(is)g(caugh)o
(t.)26 b(While)16 b(this)g(is)h(a)f(go)q(o)q(d)g(idea,)g(it)g(is)h(curren)o
(tly)g(used)h(without)e(either)-1431 50 y(of)e(the)i(other)g(t)o(w)o(o)e
(mec)o(hanisms)i(w)o(e)f(will)f(describ)q(e.)23 b(Since)16 b(it)f(is)g
(computationall)o(y)f(less)-726 171 y(8)-988 b
8 @eop1
7 @bop0
/@F8 @newfont
@F8 @sf
[<
60F0F060>
4 4 -4 3 12] 58 @dc
7 @eop0
0 0 7 @bop1 324 307 a @F9 @sf(The)14 b(w)o(orst)g(o\013enders)i
(of)d(the)i(\\shared)f(passw)o(ord)h(problem")e(are)h(net)o(w)o(ork)g
(main)o(te-)-1432 50 y(nance)i(p)q(eople)h(and)e(teams.)25 b(Often)17 b
(they)f(w)o(an)o(t)g(an)g(accoun)o(t)g(on)g(ev)o(ery)h(lo)q(cal)e(area)h
(net)-1431 50 y(that)g(they)h(service,)h(eac)o(h)f(with)f(the)h(same)g
(passw)o(ord.)26 b(That)16 b(w)o(a)o(y)g(they)h(can)g(examine)-1432 50 y
(net)o(w)o(ork)d(problems)g(and)f(suc)o(h)i(without)e(ha)o(ving)g(to)h(lo)q
(ok)f(up)h(h)o(undreds)h(of)e(passw)o(ords.)-1356 49 y(While)j(the)h(net)o
(w)o(ork)f(main)o(tainers)g(are)h(generally)f(\(but)h(not)g(alw)o(a)o(ys\))f
(go)q(o)q(d)g(ab)q(out)-1432 50 y(pic)o(king)c(reasonable)h(passw)o(ords)h
(and)f(k)o(eeping)h(them)f(secre)q(t,)h(if)e(an)o(y)h(one)h(mac)o(hine)f
(that)-1432 50 y(they)f(are)h(using)g(has)f(a)g(readable)h(passw)o(ord)g
(\014le)f(\(discusse)q(d)i(b)q(elo)o(w\))e(or)g(is)h(ev)o(er)g(compro-)-1432
50 y(mised,)i(this)h(passw)o(ord)g(is)f(itself)h(compromised)f(and)h(an)f
(attac)o(k)o(er)h(can)g(gain)f(unautho-)-1432 50 y(rized)f(access)i(to)e
(h)o(undreds)h(or)e(thousands)i(of)e(mac)o(hines.)-925 108 y @F5 @sf
(2.1.3)47 b(Readable)16 b(P)o(assw)o(ord)o 15 x(Files)-662 76 y @F9 @sf(A)e
(readable)i(passw)o(ord)f(\014le)g(is)f(an)h(acciden)o(t)h(w)o(aiting)d
(to)i(happ)q(en.)21 b(With)15 b(access)h(to)f(the)-1431 50 y(encrypted)g
(passw)o(ord)f(an)f(attac)o(k)o(er)i(can)e(guess)i(passw)o(ords)f(at)g
(his)g(leisure)g(without)f(y)o(ou)-1432 50 y(b)q(eing)i(able)g(to)g(tell)g
(that)g(he)h(is)f(doing)g(so.)22 b(Once)17 b(he)e(has)h(a)f(correct)i
(passw)o(ord,)f(he)f(can)-1431 50 y(then)d(access)q 13 x(y)o(our)g(mac)o
(hine)g(as)g(that)g(user.)19 b(In)12 b(the)h(case)g(of)e(certain)i(op)q
(erating)f(systems,)-1431 49 y(including)f(older)h(v)o(ersions)g(of)g
(VMS,)f(there)j(is)e(a)f(w)o(ell)h(kno)o(w)f(in)o(v)o(ersion)h(for)g(the)g
(passw)o(ord)-1431 50 y(encryption)k(algorithm)o 14 x(and)g(hence)g(the)g
(attac)o(k)o(er)g(do)q(esn't)g(need)h(to)e(guess)h(at)g(all)e(once)-1431
50 y(he)g(can)g(read)g(the)h(passw)o(ord)f(\014le.)-477 50 y(Changing)g
(the)i(encryption)h(metho)q(d)e(to)h(some)g(other)g(metho)q(d)g(that)f(is)h
(also)f(publi-)-1433 50 y(cally)g(kno)o(wn)g(do)q(esn't)i(help)f(this)g
(set)h(of)f(problems,)g(ev)o(en)h(if)e(the)i(crypto-system)g(itself)-1432
49 y(is)d(m)o(uc)o(h)g(stronger.)21 b(The)15 b(w)o(eakness)h(here)f(is)g
(not)f(in)g(the)h(crypto-system)h(but)f(rather)g(in)-1432 50 y(the)f(ease)h
(of)e(making)g(guesses.)-431 50 y(It)f(is)g(vital)e(to)i(protect)h(y)o
(our)f(passw)o(ord)g(\014le)g(from)f(b)q(eing)h(read.)18 b(There)13 b(are)g
(t)o(w)o(o)e(parts)-1431 50 y(to)e(this.)17 b(First)10 b(y)o(ou)f(should)h
(prev)o(en)o(t)g(anon)o(ymous)f(\014le)h(transfers)h(from)e(b)q(e)h(able)g
(to)g(remo)o(v)o(e)-1432 50 y(a)16 b(cop)o(y)g(of)g(the)h(passw)o(ord)g
(\014le.)26 b(While)16 b(this)g(is)h(generally)f(v)o(ery)h(easy)g(to)f(do)g
(correct)q(ly)m(,)-1432 50 y(there)i(is)g(a)f(common)g(mistak)o(e)g(w)o
(orth)h(a)o(v)o(oiding.)o 28 x(Most)g(\014le)g(transfer)h(faciliti)o(es)e
(allo)o(w)-1433 49 y(y)o(ou)12 b(to)i(restrict)g(the)g(part)g(of)f(the)h
(\014le)f(system)h(from)f(whic)o(h)g(unauthen)o(ticated)h(transfers)-1430
50 y(can)i(b)q(e)i(made.)26 b(It)16 b(is)h(necess)q(ary)h(to)e(put)h(a)f
(partial)g(passw)o(ord)h(\014le)f(in)h(this)f(subsec)q(tion)-1431 50 y(so)h
(that)g(an)g(anon)o(ymous)f(agen)o(t)h(kno)o(ws)g(\\who)g(it)f(\(itself)s
(\))i(is".)27 b(Man)o(y)17 b(sites)g(ha)o(v)o(e)g(put)-1431 50 y(complete)f
(passw)o(ord)h(\014les)g(here)g(defeating)f(one)h(of)f(the)h(most)f(imp)q
(ortan)o(t)f(purp)q(oses)j(of)-1432 50 y(the)c(restrictions.)19 b(\(Of)13 b
(course)i(without)e(this)h(restriction)g(\\W)m(orld)e(Readable")h(tak)o
(es)h(on)-1432 49 y(a)f(v)o(ery)h(literal)f(meaning)p @F8 @sf(:)7 b(:)g(:)o
6 x @F9 @sf(\))-407 50 y(The)14 b(second)i(part)e(of)g(the)h(solution)e
(is)h(somewhat)g(harder.)20 b(This)14 b(is)g(to)g(prev)o(en)o(t)i(un-)-1432
50 y(privileged)c(users)i(who)e(are)i(using)e(the)h(system)h(from)e
(reading)g(the)i(encrypted)g(passw)o(ord)-1431 50 y(from)i(the)i(passw)o
(ord)g(\014le.)28 b(The)18 b(reason)g(that)f(this)h(is)f(di\016cult)g(is)g
(that)g(the)h(passw)o(ord)-1431 50 y(\014le)d(has)h(a)f(great)h(deal)g(of)f
(information)f(that)i(p)q(eople)g(and)f(programs)h(need)g(in)g(it)f(other)
-1431 49 y(than)g(the)h(passw)o(ords)g(themselv)o(es.)24 b(Some)16 b(v)o
(ersion)f(of)g(some)h(op)q(erating)f(systems)i(ha)o(v)o(e)-1432 50 y
(privileged)g(calls)g(to)g(handle)h(the)g(details)f(of)g(all)g(this)g(and)h
(hence)h(their)f(utilities)f(ha)o(v)o(e)-1432 50 y(already)c(b)q(een)i
(written)f(to)g(allo)o(w)e(protection)j(of)e(the)i(encrypted)g(passw)o
(ords.)-1188 50 y(Most)d(of)f(the)i(curren)o(t)g(v)o(ersions)f(of)g(Unix)f
(are)h @F6 @sf(not)17 b @F9 @sf(among)10 b(of)i(these)h(systems.)18 b
(Berk)o(e-)-1430 50 y(ley)10 b(has)h(distributed)h(a)f(set)g(of)g(patc)o
(hes)h(to)e(incorp)q(orate)i(this)f(separation)g(\(called)g(shado)o(w)-1432
50 y(passw)o(ords\))16 b(and)g(the)g(latest)h(v)o(ersion)f(of)f(the)h
(SunOS)h(has)f(faciliti)o(es)f(for)h(it.)23 b(F)m(or)16 b(those)-1431 49 y
(who)g(are)h(using)g(an)f(op)q(erating)h(system)h(that)e(do)q(es)i(not)f
(y)o(et)g(ha)o(v)o(e)f(shado)o(w)h(passw)o(ords)-1431 50 y(and)c(cannot)g
(use)h(one)g(of)e(the)i(new)g(releases,)g(a)f(n)o(um)o(b)q(er)h(of)e(ad)h
(ho)q(c)h(shado)o(wing)e(systems)-1430 50 y(ha)o(v)o(e)g(b)q(een)i(dev)o
(elop)q(ed.)19 b(One)13 b(can)h(install)d(shado)o(w)i(passw)o(ords)h(b)o
(y)f(editing)f(the)i(binaries)-1432 50 y(of)9 b @F4 @sf(/bin/login)p @F9 @sf
(,)o 10 x @F4 @sf(/bin/passw)o(d)g @F9 @sf(and)h(similar)f(programs)i
(that)f(actually)g(need)h(to)g(use)g(the)-1431 50 y(passw)o(ord)k(\014elds)g
(and)f(then)i(mo)q(dify)d @F4 @sf(/etc/vipw)g @F9 @sf(to)h(w)o(ork)h(with)f
(b)q(oth)h(the)g(diminished)-727 156 y(7)-988 b
7 @eop1
6 @bop0
6 @eop0
0 0 6 @bop1 262 307 a @F9 @sf(and)12 b(ev)o(ery)h(mac)o(hine)f(tested.)19 b
(These)13 b(included)g(mac)o(hines)f(that)h(had)f(passw)o(ord)g(systems)
-1430 50 y(designed)i(to)g(prev)o(en)o(t)h(usernames)g(from)e(b)q(eing)h
(used)h(as)f(passw)o(ords.)-1056 50 y(This)c(summer,)h(while)f(I)g(w)o(as)g
(testing)h(a)f(series)i(of)e(sensitiv)o(e)h(systems,)g(where)h(h)o(undred)
-1431 50 y(of)g(thousands)i(of)e(dollars)g(w)o(ere)i(sp)q(en)o(t)g(to)f
(remo)o(v)o(e)h(securit)o(y)g(holes)f(including)f(re-writing)-1432 49 y(a)h
(fair)g(fraction)h(of)f(the)h(op)q(erating)g(system,)g(there)i(w)o(ere)e
(Jo)q(es.)-945 50 y(It)h(is)h(w)o(orth)o(while)e(to)i(include)f(a)g(pro)q
(cess)q 16 x(in)g(y)o(our)h(system)g(batc)o(hing)f(\014le)g(\()p @F4 @sf
(cron)g @F9 @sf(on)-1432 50 y(unix\))e(to)g(c)o(hec)o(k)i(for)e(Jo)q(es)i
(explicitly)m(.)h(The)f(most)e(common)g(o)q(ccurrenc)q(es)q 15 x(of)g(Jo)q
(es)h(is)g(the)-1431 50 y(initial)o 16 x(passw)o(ord)k(that)f(the)h
(system)g(administrators)f(set)h(for)f(an)g(accoun)o(t)h(whic)o(h)f(has)
-1431 50 y(nev)o(er)12 b(b)q(een)h(c)o(hanged.)k(Often)12 b(this)g
(initial)o 10 x(passw)o(ord)g(is)g(set)g(b)o(y)f(the)h(administrator)f
(with)-1432 49 y(the)k(exp)q(ectation)g(the)h(user)f(will)f(c)o(hange)h
(it)f(promptly)m(.)19 b(Often)d(the)f(user)h(do)q(esn't)f(kno)o(w)-1432
50 y(ho)o(w)d(to)h(c)o(hange)h(it)f(or)g(in)g(fact)g(nev)o(er)h(logs)f(in)g
(at)g(all.)o 17 x(In)g(the)h(latter)g(case)g(a)f(dorman)o(t)g(ac-)-1432
50 y(coun)o(t)e(lies)h(on)f(the)h(system)g(accomplishing)e(nothing)h
(except)i(w)o(asting)e(system)h(resource)q(s)-1430 50 y(and)h(increasing)h
(vulnerabilities.)-542 108 y @F5 @sf(2.1.2)47 b(Same)16 b(P)o(assw)o(ords)o
15 x(on)f(Di\013eren)o(t)o 15 x(Mac)o(hines)-966 76 y @F9 @sf(Man)o(y)f(y)o
(ears)i(ago)f(when)h(a)f(computing)g(cen)o(ter)i(had)e(a)g(single)g
(mainframe)f(the)i(issue)g(of)-1432 50 y(a)e(user)h(ha)o(ving)f(the)h
(same)g(passw)o(ord)g(on)f(m)o(ultiple)f(mac)o(hines)i(w)o(as)f(mo)q(ot.)
19 b(As)c(long)f(the)-1431 50 y(n)o(um)o(b)q(er)i(of)f(mac)o(hines)h(that)g
(a)f(user)i(accesse)q(d)g(w)o(as)f(v)o(ery)g(small,)e(it)i(w)o(as)g
(reasonable)g(to)-1432 50 y(request)k(that)f(a)f(p)q(erson)i(to)e(use)i(a)e
(di\013eren)o(t)i(passw)o(ord)f(on)f(eac)o(h)i(mac)o(hine)e(or)h(set)g(of)
-1432 50 y(mac)o(hines.)e(With)c(a)g(mo)q(dern)h(w)o(orkstation)e(en)o
(vironmen)o(t,)h(it)g(is)g(no)g(longer)h(practical)f(to)-1432 49 y(exp)q
(ect)j(this)g(from)e(a)h(user)i(and)e(a)g(user)h(is)g(unlik)o(ely)e(to)h
(comply)f(if)h(ask)o(ed.)23 b(There)16 b(are)g(a)-1432 50 y(n)o(um)o(b)q
(er)e(of)f(simple)g(compromise)h(measures)h(that)f(can)g(and)g(should)g(b)q
(e)g(tak)o(en.)-1218 50 y(Among)9 b(these)j(measures)g(is)e(requesting)h
(that)g(privileged)f(users)i(ha)o(v)o(e)e(di\013eren)o(t)h(pass-)-1431 50 y
(w)o(ords)16 b(for)h(their)g(privileged)f(accoun)o(ts)i(than)e(for)h
(their)g(normal)f(use)h(accoun)o(t)g(and)g(for)-1432 50 y(their)e(accoun)o
(ts)h(on)e(mac)o(hines)i(at)e(other)i(cen)o(ters)q(.)22 b(If)15 b(the)h
(latter)f(is)g(not)g(the)g(case,)h(then)-1431 50 y(an)o(y)o(one)e(who)h
(gains)g(con)o(trol)g(of)f(one)i(of)e(these)j(\\other")e(mac)o(hines)g
(whic)o(h)g(y)o(ou)g(ha)o(v)o(e)g(no)-1432 49 y(con)o(trol)e(o)o(v)o(er,)h
(has)g(gained)f(privileged)g(access)q 15 x(to)h(y)o(ours)g(as)g(w)o(ell.)
-992 50 y(The)c(basic)g(question)h(of)e(when)i(passw)o(ords)g(should)f(b)q
(e)g(the)h(same)f(is)g(actually)f(a)h(simple)-1432 50 y(one.)29 b(P)o
(assw)o(ords)19 b(should)f(b)q(e)g(the)g(same)g(when)g(the)h(t)o(w)o(o)e
(mac)o(hines)h(are)g(\(1\))g(logicall)o(y)-1433 50 y(equiv)n(alen)o(t)d
(\(as)h(in)f(a)h(p)q(o)q(ol)f(of)h(w)o(orkstations\),)g(\(2\))g(\\trust)g
(eac)o(h)h(other")f(to)g(the)h(exten)o(t)-1431 50 y(that)d(compromising)g
(one)h(w)o(ould)f(compromise)h(the)g(others)h(in)f(other)g(w)o(a)o(ys,)f
(or)h(\(3\))g(are)-1431 49 y(run)f(b)o(y)g(the)h(same)g(cen)o(ter)h(with)d
(the)i(same)g(securit)o(y)g(measures.)21 b(P)o(assw)o(ords)15 b(should)f
(b)q(e)-1431 50 y(di\013eren)o(t)k(when)g(the)g(computers)g(are)g(\(1\))f
(run)h(b)o(y)f(di\013eren)o(t)h(organizations,)f(\(2\))h(ha)o(v)o(e)-1432
50 y(di\013eren)o(t)c(lev)o(els)g(of)g(securit)o(y)g(or)g(\(3\))g(ha)o(v)o
(e)g(di\013eren)o(t)h(op)q(erating)e(systems.)-1128 50 y(Lest)f(this)g
(seems)h(to)q(o)e(strict,)h(b)q(e)g(assured)h(that)f(I)f(ha)o(v)o(e)h(on)f
(sev)o(eral)h(o)q(ccasions)g(brok)o(en)-1431 50 y(in)o(to)e(mac)o(hines)i
(b)o(y)g(giving)e(privileged)h(users)i(on)e(the)i(target)f(mac)o(hines)f
(accoun)o(ts)i(on)e(one)-1431 49 y(of)17 b(m)o(y)g(o)o(wn)h(and)g
(exploiting)f(their)h(use)h(of)e(the)i(same)f(passw)o(ord)h(on)f(b)q(oth.)
30 b(F)m(urther,)-1431 50 y(mac)o(hines)17 b(with)g(di\013eren)o(t)h(op)q
(erating)f(systems)h(are)g(inheren)o(tly)f(vulnerable)g(to)g(di\013er-)-1431
50 y(en)o(t)e(\\programming)e(bugs")i(and)g(hence)i(b)o(y)e(ha)o(ving)f
(the)h(same)h(passw)o(ords)f(on)g(the)h(t)o(w)o(o)-1432 50 y(mac)o(hines,)g
(eac)o(h)h(mac)o(hine)f(is)g(op)q(en)h(to)f(the)h(all)e(the)i(bugs)f(that)h
(could)f(exist)h(on)f(either)-1431 50 y(system.)-73 50 y(It)g(is)h(in)o
(teresting)f(\(but)h(of)f(little)g(practical)g(v)n(alue\))g(to)g(note)h
(that)f(an)g(attac)o(k)o(er)h(can)-1431 49 y(gain)f(a)h(cryptographic)h
(adv)n(an)o(tage)f(b)o(y)g(ha)o(ving)g(t)o(w)o(o)g(di\013eren)o(t)i
(encrypted)g(strings)f(for)-1432 50 y(the)d(same)g(passw)o(ord.)22 b(This)
15 b(w)o(ould)f(happ)q(en)i(when)f(the)h(user)g(has)f(the)h(same)f(passw)o
(ord)-1431 50 y(on)h(t)o(w)o(o)h(mac)o(hines)g(but)g(it)g(has)g(b)q(een)i
(encrypted)f(with)f(di\013eren)o(t)h(salts.)28 b(In)17 b(principle,)-1432
50 y(this)12 b(mak)o(es)g(hostile)g(decryption)h(m)o(uc)o(h)f(easier.)18 b
(In)12 b(practice,)i(the)f(attac)o(k)f(metho)q(ds)h(that)-1432 50 y(are)h
(most)g(often)f(used)i(do)f(not)g(exploit)f(this.)-13 156 y(6)-988 b
6 @eop1
5 @bop0
@F1 @sf
[<
FFFFFF80FFFFFF80FFFFFF807FFFFFC03FFFFFC01FFFFFC00FFFFFC0070001C0038001C001
C001C000E000E0007000E0003C00E0001E0000000F0000000780000003E0000003F0000001
F8000000FC000000FE0000007F0000007F8000003FC000003FC000003FE03C003FE07E001F
E0FF001FE0FF001FE0FF003FE0FF003FC0FE003FC07C007F803800FF001F03FE000FFFFC00
03FFF00000FF8000>
27 39 -3 38 34] 50 @dc
5 @eop0
0 0 5 @bop1 262 307 a @F1 @sf(2)69 b(Inciden)n(t)22 b(Av)n(oidance)-683
91 y @F9 @sf(\\An)12 b(ounce)g(of)g(prev)o(en)o(tion)g(is)g(w)o(orth)g(a)g
(p)q(ound)h(of)e(cure.")18 b(In)13 b(computer)f(secur)q(it)o(y)h(this)f
(is)-1432 50 y(an)e(understate)q(men)o(t)i(b)o(y)f(a)g(greater)h(factor)f
(than)g(can)g(b)q(e)h(easily)f(b)q(e)g(b)q(eliev)o(ed.)18 b(V)m(ery)11 b
(little)-1432 50 y(has)j(historically)g(b)q(een)i(done)e(to)h(prev)o(en)o
(t)h(computer)f(break-ins)g(and)f(I)h(ha)o(v)o(e)f(b)q(een)i(told)-1432
50 y(b)o(y)d(a)h(n)o(um)o(b)q(er)g(of)f(the)i(coun)o(try's)f(top)f
(computer)i(scien)o(tists)g(that)f(\\Computer)g(Securit)o(y)-1431 49 y(is)f
(a)g(w)o(aste)g(of)g(time.")k(The)d(b)q(elief)f(that)g(securit)o(y)i
(measures)f(or)f(prev)o(en)o(tiv)o(e)h(medicine)g(is)-1432 50 y(a)f(w)o
(aste)i(has)f(led)g(to)g(gian)o(t)f(exp)q(enditures)j(to)e(repair)g
(damage)g(to)f(b)q(oth)i(computers)g(and)-1432 50 y(p)q(eople)i(resp)q(e)q
(ctiv)o(ely)m(.)30 b(Must)18 b(of)f(m)o(y)f(surprise,)k(sev)o(eral)e
(system)g(managers)g(reviewing)-1432 50 y(this)f(do)q(cumen)o(t)g(w)o(ere)h
(sure)g(that)g(ev)o(en)f(basic)h(prev)o(en)o(tativ)o(e)f(measures)i(w)o
(ould)d(not)h(b)q(e)-1431 50 y(cost)d(e\013ectiv)o(e)h(as)f(compared)h(to)e
(repairing)h(disasters)h(after)f(they)g(o)q(ccurre)q(d.)-1177 49 y(The)c
(v)n(ast)f(ma)r(jorit)o(y)f(of)h(the)h(securit)o(y)h(inciden)o(ts)f(are)g
(caused)g(b)o(y)g(one)f(of)g(ab)q(out)h(a)f(dozen)-1431 50 y(w)o(ell)h
(understo)q(o)q(d)j(problems.)k(By)11 b(not)g(making)f(these)j(mistak)o
(es,)e(y)o(ou)g(can)h(prev)o(en)o(t)g(most)-1432 50 y(of)i(the)h(problems)g
(from)f(happ)q(ening)h(to)g(y)o(our)f(systems)i(and)f(a)o(v)o(oid)f(un)o
(told)g(hassles)i(and)-1432 50 y(losses.)22 b(Almost)15 b(ev)o(ery)h(site)f
(that)g(I)g(surv)o(ey)h(and)f(almost)g(ev)o(ery)g(inciden)o(t)h(that)f
(did)g(not)-1432 50 y(in)o(v)o(ol)o(v)o(e)d(insiders)h(w)o(as)f(caused)i
(b)o(y)e(one)h(of)f(these)i(problems.)k(In)13 b(the)g(most)f(of)g(the)h
(insider)-1431 49 y(cases,)f(no)f(amoun)o(t)g(of)g(computer)h(securit)o(y)g
(w)o(ould)f(ha)o(v)o(e)g(help)q(ed)h(and)f(these)i(are)f(in)e(man)o(y)-1432
50 y(w)o(a)o(ys)15 b(demonstrated)h(problems)g(with)f(ph)o(ysical)g
(securit)o(y)h(or)f(p)q(ersonnel)i(p)q(olicy)e(rather)-1431 50 y(than)e
(with)h(computer)h(securit)o(y)f(p)q(er)h(se.)-587 50 y(Most)i(of)f(the)i
(securit)o(y)g(inciden)o(ts)f(are)h(caused)g(b)o(y)f(\\attac)o(k)o(ers")g
(of)g(limi)o(ted)f(abilit)o(y)-1433 50 y(and)f(resource)q(s.)26 b(Because)
17 b(of)f(this)g(and)f(b)q(ecause)q 17 x(there)i(are)f(so)g(man)o(y)f
(easy)i(targets,)f(if)-1432 50 y(y)o(ou)d(pro)o(vide)h(the)g(most)g(basic)g
(lev)o(el)g(of)f(protection,)h(most)g(of)f(the)i(attac)o(k)o(ers)g(will)d
(break)-1431 49 y(in)o(to)f(some)i(other)g(site)g(instead)g(of)f(b)q
(othering)h(y)o(ours.)18 b(There)c(are)f(of)f(course)i(exceptional)-1432
50 y(cases.)39 b(If)20 b(y)o(ou)g(are)h(b)q(eliev)o(ed)g(to)f(ha)o(v)o(e)h
(highly)e(sensitiv)o(e)i(information)e(or)i(are)g(on)f(a)-1432 50 y(\\hit)
13 b(list")g(of)h(one)g(t)o(yp)q(e)g(or)g(another,)g(y)o(ou)g(ma)o(y)f
(encoun)o(ter)i(more)f(dedicated)h(attac)o(k)o(ers.)-1431 50 y(Readers)j
(in)o(terested)i(in)d(more)h(comprehensiv)o(e)h(defensiv)o(e)g(strategies)g
(should)e(consult)-1431 50 y(the)d(app)q(endices.)-217 49 y(Ov)o(er)f
(all,)f(prev)o(en)o(tion)h(of)f(a)h(problem)f(is)h(ab)q(out)g(four)g
(orders)h(of)e(magnitude)g(c)o(heap)q(er)-1430 50 y(than)18 b(ha)o(ving)f
(to)h(handling)g(it)g(in)g(the)h(a)o(v)o(erage)f(case.)33 b(Prop)q(er)19 b
(planning)e(can)i(reduce)-1430 50 y(the)f(cost)g(of)f(inciden)o(t)h
(handling)e(and)i(reco)o(v)o(ery)h(and)e(is)h(discussed)h(in)e(the)h
(section)h(on)-1432 50 y(planning.)o 27 x(In)e(addition)f(to)h(whatev)o
(er)h(other)g(measures)h(are)e(tak)o(en,)h(the)g(greatest)g(in-)-1432 50 y
(cremen)o(tal)f(securit)o(y)h(impro)o(v)o(emen)o(t)f(will)e(b)q(e)j
(obtained)f(b)q(e)h(implemen)o(ting)d(the)j(simple)-1432 49 y(measures)d
(describ)q(ed)g(b)q(elo)o(w.)-477 117 y @F2 @sf(2.1)55 b(P)n(assw)o(ords)
-377 76 y @F9 @sf(While)9 b(\\go)q(o)q(d)h(passw)o(ords")i(is)e(not)h(a)f
(hot)h(and)f(sexy)h(topic)g(and)f(will)g(nev)o(er)h(command)f(the)-1431
50 y(prestige)15 b(of)f(exploitable)g(bugs)h(in)f(the)h(op)q(erating)g
(system)g(itself,)f(it)h(is)f(the)h(single)g @F6 @sf(most)-1432 50 y(imp)n
(ortant)h @F9 @sf(topic)d(in)g(inciden)o(t)g(prev)o(en)o(tion.)19 b(Doing)
12 b(ev)o(erything)h(else)h(en)o(tirely)f(correc)q(tly)-1431 50 y(is)g
(almost)g(of)h @F6 @sf(no)h(value)i @F9 @sf(unless)e(y)o(ou)e(get)h(this)g
(righ)o(t!)-841 108 y @F5 @sf(2.1.1)47 b(Jo)q(e's)-249 76 y @F9 @sf(A)15 b
(\\Jo)q(e")h(is)f(an)g(accoun)o(t)h(where)h(the)f(username)g(is)f(the)h
(same)g(as)g(the)g(passw)o(ord.)23 b(This)-1432 50 y(mak)o(es)14 b(the)i
(passw)o(ord)f(b)q(oth)g(easy)g(to)g(remem)o(b)q(er)h(and)e(easy)h(to)g
(guess.)22 b(It)15 b(is)f(the)i(single)-1432 50 y(most)d(common)g(cause)i
(of)e(passw)o(ord)i(problems)f(in)f(the)i(mo)q(dern)f(w)o(orld.)-1105 50 y
(In)f(1986,)f(there)j(w)o(as)e(p)q(opular)g(conjecture)q 15 x(that)g(ev)o
(ery)h(mac)o(hine)f(had)h(a)f(Jo)q(e.)18 b(There)-1430 49 y(w)o(as)e(fair)f
(amoun)o(t)h(of)f(random)h(testing)h(done)g(and)f(in)g(fact)g(a)g(Jo)q(e)h
(w)o(as)f(found)g(on)g(eac)o(h)-726 172 y(5)-988 b
5 @eop1
4 @bop0
@F1 @sf
[<
7FFFFE7FFFFE7FFFFE00FE0000FE0000FE0000FE0000FE0000FE0000FE0000FE0000FE0000
FE0000FE0000FE0000FE0000FE0000FE0000FE0000FE0000FE0000FE0000FE0000FE0000FE
0000FE0000FE0000FE0000FE0000FE0000FE0000FE00F8FE00FFFE00FFFE0007FE00007E00
001E00000E00>
23 39 -5 38 34] 49 @dc
@F6 @sf
[<
FF00FFC01C001E000C000E0004000E0002001C0002001C0001001C0001801C0000801C0000
401C00007FFC0000201C0000201C0000101C0000181C0000081C0000041C0000041C000002
3C0000023800000138000001B8000000B80000007800000078000000380000003800000018
0000001800>
26 29 -2 28 31] 65 @dc
@F6 @sf
[<
FFE7FF000F0078000700380007003800070038000700380003801C0003801C0003801C0003
801C0001C00E0001C00E0001C00E0001C00E0000FFFF0000E0070000E0070000E007000070
0380007003800070038000700380003801C0003801C0003801C0003801C0003C01E001FFCF
FE>
31 28 -3 27 31] 72 @dc
@F6 @sf
[<
00001E00FFE079000F0078800700F0800700F0400700F0400700F000038070000380700003
8070000380700001C0700001C0700001C0600001C0C00000FFC00000E0700000E01C0000E0
0E0000700F0000700780007007800070078000380380003803800038038000380700003C0E
0001FFF800>
26 29 -3 27 30] 82 @dc
[<
FFFFC00E03C00700E007006007003007001003801003800803800803800801C00001C00001
C00001C00000E00000E00000E00000E0000070000070000070000070000038000038000038
00003800003C0001FFE0>
21 28 -3 27 26] 76 @dc
[<
FFFF80000E01E0000700780007003C0007001C0007001E0003800F0003800F0003800F0003
800F0001C00F0001C00F0001C00E0001C01C0000FFF80000E03C0000E00E0000E007000070
0780007003C0007003C0007001C0003801C0003801C0003801C0003803C0003C078001FFFE
00>
26 28 -3 27 29] 66 @dc
[<
3C0063006180C1C0C0C0E0E0E060E070E070E0707038703870387038383038303E6039C01C
001C001C001C000E000E000E000E00070007003F00>
13 29 -5 28 19] 98 @dc
[<
01FF00000601F00018000E0020000000200000004000000040783C0081C662008381E20083
00E1008300710087007080870070808700708043803840438038404380384021C0384020C0
1C4010E01C401070204008184040040780800200008001000080008001000060020000180C
000007F000>
26 29 -6 28 32] 64 @dc
[<
FFF00780038003800380038001C001C001C001C000E000E000E000E0007000700070007000
38003800380038039C007C001C000C00060002>
15 28 -4 27 21] 49 @dc
[<
0F000030C000602000601000C01800C00C00C00C00600600600600600600300E00180E0008
1E00063C0003780001F00003F00003CC000786000703000601800601800601800300C00300
C0018080008180006100001E00>
18 29 -4 27 21] 56 @dc
[<
1E000021800060C000606000E07000E03800E03800E01C00E01C00E01C00601C00700E0070
0E00700E00780C00380C003C0C003B18001CF0001C00000C00000E00000600000300000383
8001838000C080003080000F00>
17 29 -5 27 21] 54 @dc
[<
80E00083F800C7F8007E0C0040060020020010020010010008000006000001000000C00000
3000001800000C000E06001107001083801083800841C00841C00841C00441C00441C00201
C002018001018000C300003C00>
18 29 -4 27 21] 50 @dc
[<
FFFFF0000E0078000700180007000C00070004000700040003800200038002000380010003
81010001C0800001C0800001C0800001C0800000FFC00000E0C00000E0400000E040000070
200000702040007000400070004000380040003800400038004000380060003C00E001FFFF
E0>
27 28 -3 27 28] 69 @dc
[<
83E000CC1800F004006002006003006001806001802000C02000C00000C00000C00001C000
01C00007C0007F8001FF0003FC0003E0000700000700000600000600100600100300180300
1801001800801800403C00304C000F84>
22 30 -3 28 23] 83 @dc
[<
1F000021C000406000803000803800801C00E01C00700E00000E00000E00000E00000E0000
0C00000C0000380001F800000E000007000703800883800841C00841C00841C00440C00400
C00200C001018000C180003E00>
18 29 -4 27 21] 51 @dc
[<
01F80000070600000C01800018004000380020007000100070000800F0000800F0000400F0
000400F0000400F0000000F0000000F0000000F00000007800000078000000780000003C00
00003C0000801C0000801E0000800E000080070000C0038001C001C001C000E003C0003002
E0001E0C600003F020>
27 30 -6 28 30] 67 @dc
[<
7C0000860000818000E0C000E0C000006000003000003800001800001C00079C000C6C0018
1E00181E00380E00380F003807003807003807001C03001C03001C03800C03800E03000603
0003030001830000C600003C00>
17 29 -5 27 21] 57 @dc
[<
00600000E000007000007000007000007000003800003800803F0040F8003F1C00181C000C
1C00061C00020E00010E00018E0000C600004000006000003000003000001800001800001C
00000C00000E000006000007000007000003000003800003800003800001C0000180>
18 36 -2 27 21] 52 @dc
[<
0C00000E00000E000007000007000007000003000003800003800001800001C00000C00000
C000006000006000006000003000001000001800800800800C00400400400600601A003027
003C61001FE08017E08009C040>
18 29 -7 27 21] 55 @dc
[<
1E000071800060C000E06000C06000E03000E03800E03800E01C00E01C00E01C00700E0070
0E00700E00700E003807003807003807003807001C03001C03800C03800E03800603800603
0003030001830000C600003C00>
17 29 -5 27 21] 48 @dc
4 @eop0
0 0 4 @bop1 262 307 a @F1 @sf(1)69 b(Ov)n(erview)-386 91 y @F9 @sf(Since)
13 b(1984,)f(I)g(ha)o(v)o(e)h(b)q(een)h(p)q(erio)q(dically)e(distracted)i
(from)e(m)o(y)h(education,)f(m)o(y)h(researc)o(h)-1430 50 y(and)c(from)f
(m)o(y)h(p)q(ersonal)h(life)e(to)i(help)f @F6 @sf(hand)r(le)h @F9 @sf
(computer)g(emergencies)q(.)18 b(After)10 b(presen)o(ting)-1431 50 y
(dozens)20 b(of)f(pap)q(ers,)j(tutorials)d(talks)h(on)f(computer)h
(securit)o(y)m(,)i(Roger)d(Anderson)i(and)-1432 50 y(George)d(Mic)o(hale)h
(arranged)g(for)f(me)h(to)g(lead)f(a)h(one)g(da)o(y)f(in)o(tensiv)o(e)h
(seminar)f(on)h(the)-1431 49 y(practical)11 b(asp)q(ects)j(of)d(computer)h
(securit)o(y)h(in)e(an)h(unclassi\014ed)g(net)o(w)o(ork)o(ed)h(en)o
(vironmen)o(t)-1432 50 y(for)c(IEEE)h(Comp)q(con.)17 b(This)9 b(primer)h
(w)o(as)g(written)g(as)g(a)f(basic)h(text)g(for)g(this)f(t)o(yp)q(e)i
(seminar)-1432 50 y(and)k(has)h(b)q(een)h(used)f(for)g(ab)q(out)f(2)h
(dozen)g(of)f(them)h(in)f(the)i(past)f(y)o(ear)g(,)f(and)h(is)f(still)g
(in)-1432 50 y(draft)e(form.)-137 50 y(The)d(text)h(is)f(divided)g(in)o
(to)f(four)h(main)f(sections)i(with)f(a)g(n)o(um)o(b)q(er)g(of)g(app)q
(endices.)18 b(The)-1431 49 y(\014rst)d(t)o(w)o(o)e(ma)r(jor)h(sections)i
(of)d(this)i(do)q(cumen)o(t)g(con)o(tain)e(the)i(material)f(for)g(the)h
(morning)-1433 50 y(lecture.)29 b(The)18 b(t)o(w)o(o)f(follo)o -1 x(wing)o
16 x(sections)i(con)o(tain)d(the)i(afterno)q(on)g(lecture)g(con)o(tain)f
(the)-1431 50 y(afterno)q(on's)j(material.)38 b(The)21 b(remaining)e(app)q
(endices)j(include)f(material)f(that)h(is)f(of)-1432 50 y(in)o(terest)15 b
(to)e(those)i(p)q(eople)f(who)g(ha)o(v)o(e)g(to)f(deal)h(with)g(other)g
(computer)h(securit)o(y)f(issues.)-1353 50 y(Since)19 b(this)g(primer)f
(is)h(a)f(direct)i(and)e(simple)h(\\ho)o(w)f(to)g(guide")g(for)h
(cost-e\013ectiv)o(e)-1430 49 y(solutions)e(to)g(computer)i(securit)o(y)g
(problems,)f(it)f(do)q(es)i(not)f(con)o(tain)f(as)h(man)o(y)f(stories)-1431
50 y(and)12 b(examples)g(as)h(m)o(y)e(other)i(tutorials.)k(Those)c
(readers)q 13 x(in)o(tereste)q(d)h(in)e(these)h(stories)h(or)-1432 50 y
(who)e(are)g(ha)o(ving)g(di\016cult)o(y)f(con)o(vincing)h(p)q(eople)h(in)f
(their)h(organization)e(of)h(the)h(need)g(for)-1432 50 y(computer)k
(securit)o(y)g(are)g(referred)q 17 x(to)g @F6 @sf(A)o(ttack)g(of)g(the)g
(Tiger)g(T)m(e)n(am)p @F9 @sf(,)f(when)h(it)f(b)q(ecomes)-1430 50 y(a)o(v)n
(ail)o(abl)o(e.)j(and)14 b(those)h(readers)h(in)o(terested)g(in)d
(comprehensiv)o(e)j(list)e(of)f(computer)i(secu-)-1430 50 y(rit)o(y)e
(vulnerabilities)g(should)h(con)o(tact)g(the)h(author)f(regarding)f(the)i
@F6 @sf(Hackman)j @F9 @sf(pro)r(ject.)-1350 49 y(Suggestions,)11 b
(questions)h(and)f(other)g(commen)o(ts)g(are)h(alw)o(a)o(ys)e(w)o(elcome.)
17 b(Please)12 b(send)-1431 50 y(commen)o(ts)i(to)g @F4 @sf(primer@cert.)o
(sei.c)o(mu.e)p(d)o(u)p @F9 @sf(.)k(I)d(hop)q(e)g(to)f(publish)g(a)g(this)h
(set)g(of)f(notes)-1431 50 y(in)g(a)h(more)g(complete)g(form)f(in)h(the)h
(future.)22 b(When)15 b(sending)g(commen)o(ts)g(or)g(questions,)-1431 50 y
(please)f(men)o(tion)f(that)h(y)o(ou)g(w)o(ere)g(reading)g(v)o(ersion)g
(CER)m(T)f(0.6)g(of)g(June)i(8,)e(1990.)-758 91 y @F6 @sf(R)o(ussel)r(l)i
(L.)g(Br)n(and)-343 50 y(br)n(and@l)r(l)r(l-cr)n(g.l)r(l)o(nl.gov)-437 50 y
(1862)g(Euclid)g(A)o(ve,)g(Suite)g(136)-435 50 y(Berkeley,)f(CA)29 b
(94709)-198 1005 y @F9 @sf(4)-988 b
4 @eop1
3 @bop0
3 @eop0
0 0 3 @bop1 262 307 a @F5 @sf(G)24 b(Guest)14 b(Accoun)o(ts)990 b(42)-1370
50 y @F9 @sf(G.1)29 b(A)o(ttac)o(k)14 b(Di\016cult)o(y)f(Ratios)31 b @F8 @sf
(:)21 b(:)f(:)g(:)g(:)h(:)f(:)g(:)h(:)f(:)g(:)g(:)h(:)f(:)g(:)h(:)f(:)g(:)g
(:)h(:)f(:)g(:)h(:)44 b @F9 @sf(42)-1370 50 y(G.2)29 b(Individual)13 b(Sp)q
(onsors)43 b @F8 @sf(:)20 b(:)g(:)h(:)f(:)g(:)g(:)h(:)f(:)g(:)h(:)f(:)g(:)g
(:)h(:)f(:)g(:)h(:)f(:)g(:)g(:)h(:)f(:)g(:)h(:)44 b @F9 @sf(42)-1370 50 y
(G.3)29 b(The)15 b(No)e(Guest)i(P)o(olicy)j @F8 @sf(:)i(:)g(:)h(:)f(:)g(:)g
(:)h(:)f(:)g(:)h(:)f(:)g(:)g(:)h(:)f(:)g(:)h(:)f(:)g(:)g(:)h(:)f(:)g(:)h
(:)44 b @F9 @sf(42)-1432 91 y @F5 @sf(H)25 b(Orange)15 b(Bo)q(ok)1047 b
(43)-1432 91 y(I)44 b(Ac)o(kno)o(wledgemen)n(ts)924 b(44)-727 2151 y @F9 @sf
(3)-988 b
3 @eop1
2 @bop0
2 @eop0
0 0 2 @bop1 419 307 a @F9 @sf(3.1.4)46 b(Av)o(oiding)13 b(the)h(F)m(uture)g
(Inciden)o(ts)h(and)f(Escalation)21 b @F8 @sf(:)f(:)g(:)h(:)f(:)g(:)h(:)
44 b @F9 @sf(23)-1275 50 y(3.1.5)i(Av)o(oiding)13 b(lo)q(oking)o 13 x(fo)q
(olish)21 b @F8 @sf(:)g(:)f(:)g(:)h(:)f(:)g(:)g(:)h(:)f(:)g(:)h(:)f(:)g(:)g
(:)h(:)f(:)g(:)h(:)44 b @F9 @sf(23)-1275 50 y(3.1.6)60 b(Finding)13 b(out)h
(who)f(did)h(it)33 b @F8 @sf(:)21 b(:)f(:)g(:)h(:)f(:)g(:)g(:)h(:)f(:)g(:)h
(:)f(:)g(:)g(:)h(:)f(:)g(:)h(:)44 b @F9 @sf(24)-1275 50 y(3.1.7)i
(Punishing)14 b(the)g(attac)o(k)o(ers)34 b @F8 @sf(:)21 b(:)f(:)g(:)h(:)f
(:)g(:)g(:)h(:)f(:)g(:)h(:)f(:)g(:)g(:)h(:)f(:)g(:)h(:)44 b @F9 @sf(24)-1370
49 y(3.2)d(Bac)o(kups)25 b @F8 @sf(:)20 b(:)g(:)h(:)f(:)g(:)g(:)h(:)f(:)g
(:)h(:)f(:)g(:)g(:)h(:)f(:)g(:)h(:)f(:)g(:)g(:)h(:)f(:)g(:)h(:)f(:)g(:)g
(:)h(:)f(:)g(:)h(:)44 b @F9 @sf(24)-1275 50 y(3.2.1)i(Wh)o(y)13 b(W)m(e)h
(Need)h(Bac)o(k)f(Ups)e @F8 @sf(:)21 b(:)f(:)g(:)h(:)f(:)g(:)g(:)h(:)f(:)g
(:)h(:)f(:)g(:)g(:)h(:)f(:)g(:)h(:)44 b @F9 @sf(24)-1275 50 y(3.2.2)i(Ho)o
(w)14 b(to)f(form)g(a)h(Bac)o(k)g(Up)g(Strategy)h(that)f(W)m(orks)28 b
@F8 @sf(:)20 b(:)g(:)h(:)f(:)g(:)h(:)44 b @F9 @sf(25)-1370 50 y(3.3)d(F)m
(orming)13 b(a)g(Plan)22 b @F8 @sf(:)e(:)g(:)h(:)f(:)g(:)h(:)f(:)g(:)g(:)h
(:)f(:)g(:)h(:)f(:)g(:)g(:)h(:)f(:)g(:)h(:)f(:)g(:)g(:)h(:)f(:)g(:)h(:)44 b
@F9 @sf(26)-1370 50 y(3.4)d(T)m(o)q(ols)13 b(to)h(ha)o(v)o(e)g(on)f(hand)
29 b @F8 @sf(:)20 b(:)h(:)f(:)g(:)g(:)h(:)f(:)g(:)h(:)f(:)g(:)g(:)h(:)f(:)g
(:)h(:)f(:)g(:)g(:)h(:)f(:)g(:)h(:)44 b @F9 @sf(27)-1370 49 y(3.5)d
(Sample)14 b(Scenarios)g(to)g(W)m(ork)f(on)g(in)h(Groups)28 b @F8 @sf(:)
20 b(:)g(:)h(:)f(:)g(:)h(:)f(:)g(:)g(:)h(:)f(:)g(:)h(:)44 b @F9 @sf(27)-1432
92 y @F5 @sf(4)38 b(Inciden)o(t)14 b(Handling)944 b(29)-1370 50 y @F9 @sf
(4.1)41 b(Basic)15 b(Hin)o(ts)32 b @F8 @sf(:)21 b(:)f(:)g(:)g(:)h(:)f(:)g
(:)h(:)f(:)g(:)g(:)h(:)f(:)g(:)h(:)f(:)g(:)g(:)h(:)f(:)g(:)h(:)f(:)g(:)g
(:)h(:)f(:)g(:)h(:)44 b @F9 @sf(29)-1275 49 y(4.1.1)i(P)o(anic)14 b(Lev)o
(el)26 b @F8 @sf(:)21 b(:)f(:)g(:)h(:)f(:)g(:)g(:)h(:)f(:)g(:)h(:)f(:)g(:)g
(:)h(:)f(:)g(:)h(:)f(:)g(:)g(:)h(:)f(:)g(:)h(:)44 b @F9 @sf(29)-1275 50 y
(4.1.2)i(Call)13 b(Logs)g(and)h(Time)f(Lines)26 b @F8 @sf(:)20 b(:)g(:)h
(:)f(:)g(:)g(:)h(:)f(:)g(:)h(:)f(:)g(:)g(:)h(:)f(:)g(:)h(:)44 b @F9 @sf
(29)-1275 50 y(4.1.3)i(Accoun)o(tabilit)o(y)13 b(and)h(Authorit)o(y)20 b
@F8 @sf(:)h(:)f(:)g(:)g(:)h(:)f(:)g(:)h(:)f(:)g(:)g(:)h(:)f(:)g(:)h(:)44 b
@F9 @sf(29)-1275 50 y(4.1.4)i(Audit)14 b(Logs)33 b @F8 @sf(:)21 b(:)f(:)g
(:)h(:)f(:)g(:)g(:)h(:)f(:)g(:)h(:)f(:)g(:)g(:)h(:)f(:)g(:)h(:)f(:)g(:)g
(:)h(:)f(:)g(:)h(:)44 b @F9 @sf(29)-1275 50 y(4.1.5)i(Timestamps)14 b
@F8 @sf(:)21 b(:)f(:)g(:)h(:)f(:)g(:)g(:)h(:)f(:)g(:)h(:)f(:)g(:)g(:)h(:)f
(:)g(:)h(:)f(:)g(:)g(:)h(:)f(:)g(:)h(:)44 b @F9 @sf(29)-1370 49 y(4.2)d
(Basic)15 b(T)m(ec)o(hniques)27 b @F8 @sf(:)20 b(:)h(:)f(:)g(:)h(:)f(:)g
(:)g(:)h(:)f(:)g(:)h(:)f(:)g(:)g(:)h(:)f(:)g(:)h(:)f(:)g(:)g(:)h(:)f(:)g
(:)h(:)44 b @F9 @sf(30)-1275 50 y(4.2.1)i(Di\013erencing)19 b @F8 @sf(:)i
(:)f(:)g(:)h(:)f(:)g(:)g(:)h(:)f(:)g(:)h(:)f(:)g(:)g(:)h(:)f(:)g(:)h(:)f
(:)g(:)g(:)h(:)f(:)g(:)h(:)44 b @F9 @sf(30)-1275 50 y(4.2.2)i(Finding)31 b
@F8 @sf(:)20 b(:)g(:)h(:)f(:)g(:)h(:)f(:)g(:)g(:)h(:)f(:)g(:)h(:)f(:)g(:)g
(:)h(:)f(:)g(:)h(:)f(:)g(:)g(:)h(:)f(:)g(:)h(:)44 b @F9 @sf(30)-1275 50 y
(4.2.3)i(Sno)q(oping)36 b @F8 @sf(:)20 b(:)h(:)f(:)g(:)h(:)f(:)g(:)g(:)h
(:)f(:)g(:)h(:)f(:)g(:)g(:)h(:)f(:)g(:)h(:)f(:)g(:)g(:)h(:)f(:)g(:)h(:)44 b
@F9 @sf(30)-1275 50 y(4.2.4)i(T)m(rac)o(king)13 b @F8 @sf(:)20 b(:)g(:)h
(:)f(:)g(:)h(:)f(:)g(:)g(:)h(:)f(:)g(:)h(:)f(:)g(:)g(:)h(:)f(:)g(:)h(:)f
(:)g(:)g(:)h(:)f(:)g(:)h(:)44 b @F9 @sf(30)-1275 50 y(4.2.5)i(Psyc)o
(hology)33 b @F8 @sf(:)21 b(:)f(:)g(:)h(:)f(:)g(:)g(:)h(:)f(:)g(:)h(:)f(:)g
(:)g(:)h(:)f(:)g(:)h(:)f(:)g(:)g(:)h(:)f(:)g(:)h(:)44 b @F9 @sf(30)-1370
49 y(4.3)d(Prosecution)28 b @F8 @sf(:)21 b(:)f(:)g(:)g(:)h(:)f(:)g(:)h(:)f
(:)g(:)g(:)h(:)f(:)g(:)h(:)f(:)g(:)g(:)h(:)f(:)g(:)h(:)f(:)g(:)g(:)h(:)f
(:)g(:)h(:)44 b @F9 @sf(30)-1370 50 y(4.4)d(Exercise)28 b @F8 @sf(:)20 b
(:)g(:)h(:)f(:)g(:)g(:)h(:)f(:)g(:)h(:)f(:)g(:)g(:)h(:)f(:)g(:)h(:)f(:)g
(:)g(:)h(:)f(:)g(:)h(:)f(:)g(:)g(:)h(:)f(:)g(:)h(:)44 b @F9 @sf(31)-1432
91 y @F5 @sf(5)38 b(Reco)o(v)o(ering)14 b(F)l(rom)h(Disasters)760 b(32)-1432
92 y(A)26 b(Micro)16 b(Computers)951 b(32)-1432 91 y(B)28 b(VMS)16 b
(Script)1071 b(35)-1432 91 y(C)28 b(Highly)16 b(Sensitiv)o(e)f(En)o
(vironmen)o -1 x(ts)o 676 x(37)-1432 92 y(D)25 b(Handling)15 b(the)g
(Press)920 b(38)-1370 50 y @F9 @sf(D.1)30 b(Spin)14 b(Con)o(trol)40 b
@F8 @sf(:)20 b(:)g(:)g(:)h(:)f(:)g(:)h(:)f(:)g(:)g(:)h(:)f(:)g(:)h(:)f(:)g
(:)g(:)h(:)f(:)g(:)h(:)f(:)g(:)g(:)h(:)f(:)g(:)h(:)44 b @F9 @sf(38)-1370
49 y(D.2)30 b(Time)14 b(Con)o(trol)26 b @F8 @sf(:)20 b(:)g(:)g(:)h(:)f(:)g
(:)h(:)f(:)g(:)g(:)h(:)f(:)g(:)h(:)f(:)g(:)g(:)h(:)f(:)g(:)h(:)f(:)g(:)g
(:)h(:)f(:)g(:)h(:)44 b @F9 @sf(38)-1370 50 y(D.3)30 b(Hero)15 b(Making)
35 b @F8 @sf(:)20 b(:)g(:)g(:)h(:)f(:)g(:)h(:)f(:)g(:)g(:)h(:)f(:)g(:)h(:)f
(:)g(:)g(:)h(:)f(:)g(:)h(:)f(:)g(:)g(:)h(:)f(:)g(:)h(:)44 b @F9 @sf(38)-1370
50 y(D.4)30 b(Discouraging)13 b(or)h(Encouraging)f(a)h(Next)h(Inciden)o(t)
30 b @F8 @sf(:)20 b(:)g(:)h(:)f(:)g(:)g(:)h(:)f(:)g(:)h(:)44 b @F9 @sf(38)
-1370 50 y(D.5)30 b(Prosecution)e @F8 @sf(:)21 b(:)f(:)g(:)g(:)h(:)f(:)g
(:)h(:)f(:)g(:)g(:)h(:)f(:)g(:)h(:)f(:)g(:)g(:)h(:)f(:)g(:)h(:)f(:)g(:)g
(:)h(:)f(:)g(:)h(:)44 b @F9 @sf(39)-1370 50 y(D.6)30 b(No)14 b(Commen)o(t)
30 b @F8 @sf(:)20 b(:)g(:)g(:)h(:)f(:)g(:)h(:)f(:)g(:)g(:)h(:)f(:)g(:)h(:)f
(:)g(:)g(:)h(:)f(:)g(:)h(:)f(:)g(:)g(:)h(:)f(:)g(:)h(:)44 b @F9 @sf(39)-1370
49 y(D.7)30 b(Honest)o(y)g @F8 @sf(:)20 b(:)g(:)h(:)f(:)g(:)g(:)h(:)f(:)g
(:)h(:)f(:)g(:)g(:)h(:)f(:)g(:)h(:)f(:)g(:)g(:)h(:)f(:)g(:)h(:)f(:)g(:)g
(:)h(:)f(:)g(:)h(:)44 b @F9 @sf(39)-1432 92 y @F5 @sf(E)31 b(Ob)s(ject)14 b
(Co)q(de)i(Protection)o 820 x(40)-1432 91 y(F)32 b(The)15 b(Jo)o(y)h(of)f
(Broadcast)872 b(41)-727 258 y @F9 @sf(2)-988 b
2 @eop1
1 @bop0
1 @eop0
0 0 1 @bop1 262 307 a @F1 @sf(Con)n(ten)n(ts)-269 91 y @F5 @sf(1)38 b(Ov)o
(erview)1150 b(4)-1432 92 y(2)38 b(Inciden)o(t)14 b(Av)o(oidance)942 b(5)
-1370 50 y @F9 @sf(2.1)41 b(P)o(assw)o(ords)23 b @F8 @sf(:)d(:)h(:)f(:)g
(:)g(:)h(:)f(:)g(:)h(:)f(:)g(:)g(:)h(:)f(:)g(:)h(:)f(:)g(:)g(:)h(:)f(:)g
(:)h(:)f(:)g(:)g(:)h(:)f(:)g(:)h(:)65 b @F9 @sf(5)-1275 49 y(2.1.1)46 b
(Jo)q(e's)18 b @F8 @sf(:)j(:)f(:)g(:)g(:)h(:)f(:)g(:)h(:)f(:)g(:)g(:)h(:)f
(:)g(:)h(:)f(:)g(:)g(:)h(:)f(:)g(:)h(:)f(:)g(:)g(:)h(:)f(:)g(:)h(:)65 b
@F9 @sf(5)-1275 50 y(2.1.2)46 b(Same)14 b(P)o(assw)o(ords)g(on)g(Di\013eren)o
(t)h(Mac)o(hines)d @F8 @sf(:)20 b(:)g(:)h(:)f(:)g(:)g(:)h(:)f(:)g(:)h(:)
65 b @F9 @sf(6)-1275 50 y(2.1.3)46 b(Readable)14 b(P)o(assw)o(ord)g(Files)f
@F8 @sf(:)21 b(:)f(:)g(:)h(:)f(:)g(:)g(:)h(:)f(:)g(:)h(:)f(:)g(:)g(:)h(:)f
(:)g(:)h(:)65 b @F9 @sf(7)-1275 50 y(2.1.4)46 b(Man)o(y)14 b(faces)g(of)f
(a)h(p)q(erson)f @F8 @sf(:)20 b(:)h(:)f(:)g(:)h(:)f(:)g(:)g(:)h(:)f(:)g(:)h
(:)f(:)g(:)g(:)h(:)f(:)g(:)h(:)65 b @F9 @sf(8)-1275 50 y(2.1.5)46 b
(Automated)14 b(Chec)o(ks)h(for)e(Dum)o(b)h(P)o(assw)o(ords)20 b @F8 @sf
(:)g(:)h(:)f(:)g(:)g(:)h(:)f(:)g(:)h(:)65 b @F9 @sf(8)-1275 50 y(2.1.6)46 b
(Mac)o(hine)14 b(Generated)h(P)o(assw)o(ords)40 b @F8 @sf(:)20 b(:)g(:)g
(:)h(:)f(:)g(:)h(:)f(:)g(:)g(:)h(:)f(:)g(:)h(:)65 b @F9 @sf(9)-1275 49 y
(2.1.7)46 b(The)14 b(Sorro)o(ws)h(of)e(Sp)q(ecial)h(Purp)q(ose)h(Hardw)o
(are)j @F8 @sf(:)j(:)f(:)g(:)g(:)h(:)f(:)g(:)h(:)44 b @F9 @sf(11)-1275 50 y
(2.1.8)i(Is)14 b(W)m(riting)f(P)o(assw)o(ords)h(Do)o(wn)g(that)f(Bad?)23 b
@F8 @sf(:)d(:)g(:)h(:)f(:)g(:)g(:)h(:)f(:)g(:)h(:)44 b @F9 @sf(11)-1275
50 y(2.1.9)i(The)14 b(T)m(ruth)g(ab)q(out)g(P)o(assw)o(ord)g(Aging)42 b
@F8 @sf(:)20 b(:)h(:)f(:)g(:)h(:)f(:)g(:)g(:)h(:)f(:)g(:)h(:)44 b @F9 @sf
(12)-1275 50 y(2.1.10)25 b(Ho)o(w)14 b(do)f(y)o(ou)h(c)o(hange)g(a)g
(passw)o(ord)24 b @F8 @sf(:)c(:)g(:)g(:)h(:)f(:)g(:)h(:)f(:)g(:)g(:)h(:)f
(:)g(:)h(:)44 b @F9 @sf(12)-1370 50 y(2.2)d(Old)14 b(P)o(assw)o(ord)g
(Files)20 b @F8 @sf(:)h(:)f(:)g(:)h(:)f(:)g(:)g(:)h(:)f(:)g(:)h(:)f(:)g(:)g
(:)h(:)f(:)g(:)h(:)f(:)g(:)g(:)h(:)f(:)g(:)h(:)44 b @F9 @sf(12)-1370 49 y
(2.3)d(Dorman)o(t)13 b(Accoun)o(ts)28 b @F8 @sf(:)21 b(:)f(:)g(:)h(:)f(:)g
(:)g(:)h(:)f(:)g(:)h(:)f(:)g(:)g(:)h(:)f(:)g(:)h(:)f(:)g(:)g(:)h(:)f(:)g
(:)h(:)44 b @F9 @sf(12)-1275 50 y(2.3.1)i(VMS)15 b @F8 @sf(:)21 b(:)f(:)g
(:)g(:)h(:)f(:)g(:)h(:)f(:)g(:)g(:)h(:)f(:)g(:)h(:)f(:)g(:)g(:)h(:)f(:)g
(:)h(:)f(:)g(:)g(:)h(:)f(:)g(:)h(:)44 b @F9 @sf(12)-1370 50 y(2.4)d
(Default)13 b(Accoun)o(ts)j(and)d(Ob)r(jects)j @F8 @sf(:)k(:)h(:)f(:)g(:)h
(:)f(:)g(:)g(:)h(:)f(:)g(:)h(:)f(:)g(:)g(:)h(:)f(:)g(:)h(:)44 b @F9 @sf
(13)-1275 50 y(2.4.1)i(Unix)19 b @F8 @sf(:)i(:)f(:)g(:)g(:)h(:)f(:)g(:)h
(:)f(:)g(:)g(:)h(:)f(:)g(:)h(:)f(:)g(:)g(:)h(:)f(:)g(:)h(:)f(:)g(:)g(:)h
(:)f(:)g(:)h(:)44 b @F9 @sf(14)-1275 50 y(2.4.2)i(VMS)15 b @F8 @sf(:)21 b
(:)f(:)g(:)g(:)h(:)f(:)g(:)h(:)f(:)g(:)g(:)h(:)f(:)g(:)h(:)f(:)g(:)g(:)h
(:)f(:)g(:)h(:)f(:)g(:)g(:)h(:)f(:)g(:)h(:)44 b @F9 @sf(15)-1275 49 y
(2.4.3)i(CMS)16 b @F8 @sf(:)21 b(:)f(:)g(:)g(:)h(:)f(:)g(:)h(:)f(:)g(:)g
(:)h(:)f(:)g(:)h(:)f(:)g(:)g(:)h(:)f(:)g(:)h(:)f(:)g(:)g(:)h(:)f(:)g(:)h
(:)44 b @F9 @sf(15)-1370 50 y(2.5)d(File)14 b(Protections)j @F8 @sf(:)j(:)g
(:)h(:)f(:)g(:)h(:)f(:)g(:)g(:)h(:)f(:)g(:)h(:)f(:)g(:)g(:)h(:)f(:)g(:)h
(:)f(:)g(:)g(:)h(:)f(:)g(:)h(:)44 b @F9 @sf(16)-1370 50 y(2.6)d(W)m(ell)
13 b(Kno)o(wn)h(Securit)o(y)g(Holes)35 b @F8 @sf(:)20 b(:)g(:)h(:)f(:)g(:)h
(:)f(:)g(:)g(:)h(:)f(:)g(:)h(:)f(:)g(:)g(:)h(:)f(:)g(:)h(:)44 b @F9 @sf
(17)-1370 50 y(2.7)d(New)15 b(Securit)o(y)f(Holes)i @F8 @sf(:)21 b(:)f(:)g
(:)h(:)f(:)g(:)g(:)h(:)f(:)g(:)h(:)f(:)g(:)g(:)h(:)f(:)g(:)h(:)f(:)g(:)g
(:)h(:)f(:)g(:)h(:)44 b @F9 @sf(18)-1275 50 y(2.7.1)i(CER)m(T)24 b @F8 @sf
(:)c(:)g(:)g(:)h(:)f(:)g(:)h(:)f(:)g(:)g(:)h(:)f(:)g(:)h(:)f(:)g(:)g(:)h
(:)f(:)g(:)h(:)f(:)g(:)g(:)h(:)f(:)g(:)h(:)44 b @F9 @sf(18)-1275 49 y
(2.7.2)i(ZARDOZ)28 b @F8 @sf(:)20 b(:)h(:)f(:)g(:)h(:)f(:)g(:)g(:)h(:)f(:)g
(:)h(:)f(:)g(:)g(:)h(:)f(:)g(:)h(:)f(:)g(:)g(:)h(:)f(:)g(:)h(:)44 b @F9 @sf
(18)-1275 50 y(2.7.3)i(CIA)o(C)35 b @F8 @sf(:)20 b(:)g(:)g(:)h(:)f(:)g(:)h
(:)f(:)g(:)g(:)h(:)f(:)g(:)h(:)f(:)g(:)g(:)h(:)f(:)g(:)h(:)f(:)g(:)g(:)h
(:)f(:)g(:)h(:)44 b @F9 @sf(18)-1370 50 y(2.8)d(Excess)q 15 x(Services)28 b
@F8 @sf(:)20 b(:)g(:)h(:)f(:)g(:)h(:)f(:)g(:)g(:)h(:)f(:)g(:)h(:)f(:)g(:)g
(:)h(:)f(:)g(:)h(:)f(:)g(:)g(:)h(:)f(:)g(:)h(:)44 b @F9 @sf(18)-1370 50 y
(2.9)d(Searc)o(h)15 b(P)o(aths)37 b @F8 @sf(:)20 b(:)g(:)g(:)h(:)f(:)g(:)h
(:)f(:)g(:)g(:)h(:)f(:)g(:)h(:)f(:)g(:)g(:)h(:)f(:)g(:)h(:)f(:)g(:)g(:)h
(:)f(:)g(:)h(:)44 b @F9 @sf(18)-1370 50 y(2.10)20 b(Routing)29 b @F8 @sf
(:)20 b(:)g(:)h(:)f(:)g(:)g(:)h(:)f(:)g(:)h(:)f(:)g(:)g(:)h(:)f(:)g(:)h(:)f
(:)g(:)g(:)h(:)f(:)g(:)h(:)f(:)g(:)g(:)h(:)f(:)g(:)h(:)44 b @F9 @sf(19)-1370
50 y(2.11)20 b(Humans)27 b @F8 @sf(:)20 b(:)g(:)h(:)f(:)g(:)g(:)h(:)f(:)g
(:)h(:)f(:)g(:)g(:)h(:)f(:)g(:)h(:)f(:)g(:)g(:)h(:)f(:)g(:)h(:)f(:)g(:)g
(:)h(:)f(:)g(:)h(:)44 b @F9 @sf(19)-1275 49 y(2.11.1)25 b(Managers)30 b
@F8 @sf(:)20 b(:)h(:)f(:)g(:)h(:)f(:)g(:)g(:)h(:)f(:)g(:)h(:)f(:)g(:)g(:)h
(:)f(:)g(:)h(:)f(:)g(:)g(:)h(:)f(:)g(:)h(:)44 b @F9 @sf(19)-1275 50 y
(2.11.2)25 b(Secretaries)q 43 x @F8 @sf(:)c(:)f(:)g(:)h(:)f(:)g(:)g(:)h(:)f
(:)g(:)h(:)f(:)g(:)g(:)h(:)f(:)g(:)h(:)f(:)g(:)g(:)h(:)f(:)g(:)h(:)44 b
@F9 @sf(19)-1275 50 y(2.11.3)25 b(T)m(ro)r(jan)13 b(Horses)i @F8 @sf(:)20 b
(:)g(:)h(:)f(:)g(:)g(:)h(:)f(:)g(:)h(:)f(:)g(:)g(:)h(:)f(:)g(:)h(:)f(:)g
(:)g(:)h(:)f(:)g(:)h(:)44 b @F9 @sf(20)-1275 50 y(2.11.4)25 b(Wizards)e
@F8 @sf(:)d(:)g(:)h(:)f(:)g(:)h(:)f(:)g(:)g(:)h(:)f(:)g(:)h(:)f(:)g(:)g(:)h
(:)f(:)g(:)h(:)f(:)g(:)g(:)h(:)f(:)g(:)h(:)44 b @F9 @sf(20)-1275 50 y
(2.11.5)25 b(F)m(unders)k @F8 @sf(:)20 b(:)g(:)h(:)f(:)g(:)h(:)f(:)g(:)g
(:)h(:)f(:)g(:)h(:)f(:)g(:)g(:)h(:)f(:)g(:)h(:)f(:)g(:)g(:)h(:)f(:)g(:)h
(:)44 b @F9 @sf(20)-1370 49 y(2.12)20 b(Group)14 b(Accoun)o(ts)42 b @F8 @sf
(:)20 b(:)h(:)f(:)g(:)h(:)f(:)g(:)g(:)h(:)f(:)g(:)h(:)f(:)g(:)g(:)h(:)f(:)g
(:)h(:)f(:)g(:)g(:)h(:)f(:)g(:)h(:)44 b @F9 @sf(20)-1370 50 y(2.13)20 b
(.rhosts)15 b(and)e(pro)o(xy)h(logins)29 b @F8 @sf(:)21 b(:)f(:)g(:)g(:)h
(:)f(:)g(:)h(:)f(:)g(:)g(:)h(:)f(:)g(:)h(:)f(:)g(:)g(:)h(:)f(:)g(:)h(:)44 b
@F9 @sf(21)-1370 50 y(2.14)20 b(Debugging)14 b @F8 @sf(:)20 b(:)h(:)f(:)g
(:)g(:)h(:)f(:)g(:)h(:)f(:)g(:)g(:)h(:)f(:)g(:)h(:)f(:)g(:)g(:)h(:)f(:)g
(:)h(:)f(:)g(:)g(:)h(:)f(:)g(:)h(:)44 b @F9 @sf(21)-1370 50 y(2.15)20 b
(Getting)14 b(P)o(eople)g(Mad)g(at)f(Y)m(ou)27 b @F8 @sf(:)20 b(:)g(:)h(:)f
(:)g(:)h(:)f(:)g(:)g(:)h(:)f(:)g(:)h(:)f(:)g(:)g(:)h(:)f(:)g(:)h(:)44 b
@F9 @sf(21)-1432 91 y @F5 @sf(3)38 b(Pre-Plann)o(ing)15 b(y)o(our)f
(Inciden)o(t)h(Handling)542 b(22)-1370 50 y @F9 @sf(3.1)41 b(Goals)f @F8 @sf
(:)21 b(:)f(:)g(:)h(:)f(:)g(:)g(:)h(:)f(:)g(:)h(:)f(:)g(:)g(:)h(:)f(:)g(:)h
(:)f(:)g(:)g(:)h(:)f(:)g(:)h(:)f(:)g(:)g(:)h(:)f(:)g(:)h(:)44 b @F9 @sf
(22)-1275 50 y(3.1.1)i(Main)o(taining)12 b(and)i(restoring)g(data)24 b
@F8 @sf(:)c(:)g(:)g(:)h(:)f(:)g(:)h(:)f(:)g(:)g(:)h(:)f(:)g(:)h(:)44 b
@F9 @sf(22)-1275 50 y(3.1.2)i(Main)o(taining)12 b(and)i(restoring)g
(service)j @F8 @sf(:)j(:)g(:)h(:)f(:)g(:)h(:)f(:)g(:)g(:)h(:)f(:)g(:)h(:)
44 b @F9 @sf(23)-1275 49 y(3.1.3)i(Figuring)13 b(ho)o(w)g(it)h(happ)q
(enned)35 b @F8 @sf(:)20 b(:)h(:)f(:)g(:)g(:)h(:)f(:)g(:)h(:)f(:)g(:)g(:)h
(:)f(:)g(:)h(:)44 b @F9 @sf(23)-727 167 y(1)-988 b
1 @eop1
0 @bop0
/@F0 @newfont
@F0 @sf
[<
00003FE0000001FFFC000007F00F00001F800380003E0000C0007800002000F000001001E0
00000803C000000807800000040F800000060F000000021F000000021E000000013E000000
013C000000017C000000017C000000017C000000007800000000F800000000F800000000F8
00000000F800000000F800000000F800000000F800000000F800000000F800000000F80000
0000F80000000078000000007C000000017C000000017C000000013C000000013E00000003
1E000000031F000000030F000000070F80000007078000000F03C000000F01E000001F00F0
00002F007800004F003E000087001F8003070007F01E030001FFF80300003FE001>
40 51 -4 49 48] 67 @dc
[<
001FC00000F0780001C01C0007800F000F0007801E0003C01E0003C03C0001E03C0001E07C
0001F0780000F0F80000F8F80000F8F80000F8F80000F8F80000F8F80000F8F80000F8F800
00F8780000F0780000F0780000F03C0001E03C0001E01C0001C01E0003C00F000780070007
0001C01C0000F07800001FC000>
29 31 -2 30 33] 111 @dc
[<
FFFC0000FFFC00000FC0000007800000078000000780000007800000078000000780000007
800000078000000780000007800000078000000781F80007860F000798038007A001E007A0
00F007C000F0078000780780007C0780003C0780003E0780003E0780001F0780001F078000
1F0780001F0780001F0780001F0780001F0780001F0780001F0780001E0780003E0780003C
0780003C0780007807C0007807A000F00F9001E0FF8803C0FF8607000781FC00>
32 45 -2 30 37] 112 @dc
[<
FFF8FFF80FC007800780078007800780078007800780078007800780078007800780078007
80078007800780078007800780078007800F80FF80FF800780000000000000000000000000
0000000000000000000007000F801F801F800F800700>
13 48 -2 47 18] 105 @dc
[<
FFFC1FFF80FFFC1FFF800FC001F800078000F000078000F000078000F000078000F0000780
00F000078000F000078000F000078000F000078000F000078000F000078000F000078000F0
00078000F000078000F000078000F000078000F000078000F000078000F000078000F00007
8000F00007C000F00007C000F00007A000F00007A001E0000F9001E000FF8C03C000FF8307
80000780FE0000>
33 31 -2 30 37] 110 @dc
[<
003FE00001C01C00070007001C0001C0380000E07000007070000070E0000038E0000038E0
000038E0000038E000003870000070300000F0180001E00E000FC003FFFF8007FFFF000FFF
F8000E0000001C0000001800000018000000180000001800000018000000087F000009C1C0
000780E000070070000F0078001E003C001E003C003E003E003E003E003E003E003E003E00
3E003E003E003E001E003C001E003C000F007800070070080380E81C01C1C41C007F030800
0000F0>
30 47 -2 31 33] 103 @dc
[<
000200010000000600018000000700038000000700038000000F0003C000000F8007C00000
0F8007C000001E80072000001E400F2000001E400F2000003C400E1000003C201E1000003C
201E10000078201C08000078103C08000078103C080000F01038040000F00878040000F008
78040001E00870020001E004F0020001E004F0020003C007E0010003C003E0010003C003E0
0100078003C00080078003C000800F8003C001C00FC007C003F0FFF07FF80FFCFFF07FF80F
FC>
46 31 -1 30 48] 119 @dc
[<
001F000078C000E04001E02001C02003C01003C01003C01003C01003C01003C01003C01003
C01003C00003C00003C00003C00003C00003C00003C00003C00003C00003C00003C00003C0
0003C00003C00003C00003C000FFFFE01FFFE00FC00007C00003C00001C00001C00000C000
00C00000C000004000004000004000004000004000>
20 44 -1 43 25] 116 @dc
[<
FFFC1FFF80FFFC1FFF800FC001F800078000F000078000F000078000F000078000F0000780
00F000078000F000078000F000078000F000078000F000078000F000078000F000078000F0
00078000F000078000F000078000F000078000F000078000F000078000F000078000F00007
8000F00007C000F00007C000F00007A000F00007A001E000079001E000078C03C000078307
80000780FE0000078000000007800000000780000000078000000007800000000780000000
07800000000780000000078000000007800000000780000000078000000007800000000780
00000007800000000F80000000FF80000000FF800000000780000000>
33 50 -2 49 37] 104 @dc
[<
001FC00000F0300001C00C00078002000F0002000E0001001E0000803C0000803C0000007C
00000078000000F8000000F8000000F8000000F8000000F8000000F8000000FFFFFF80F800
0780F80007807800078078000F807C000F003C000F001C000F001E001E000E001E0007003C
000380380000E0E000003F8000>
25 31 -2 30 29] 101 @dc
[<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>
44 49 -2 48 48] 84 @dc
[<
FFFE00FFFE000FC00007800007800007800007800007800007800007800007800007800007
800007800007800007800007800007800007800007800007800007800007C00007C00007C0
0007C03807A07C0F907CFF907CFF8C180783E0>
22 31 -2 30 25] 114 @dc
[<
03FC03E00F0307F03E008F087C005E0478003E04F8003E04F8003E04F8001E04F8001E04F8
001E047C001E003C001E003E001E001F001E000F801E0003E01E0000FC1E00000FFE000000
1E0000001E0000001E0008001E003E001E003E001E003E001C003C003C0010003800100070
000C00E0000303C00000FE0000>
30 31 -3 30 33] 97 @dc
[<
7FFF007FFF0007E00003C00003C00003C00003C00003C00003C00003C00003C00003C00003
C00003C00003C00003C00003C00003C00003C00003C00003C00003C00003C00003C00003C0
0003C00003C00003C00003C000FFFFC0FFFFC003C00003C00003C00003C00003C00003C000
03C00003C00003C00003C00003C00003C00001C03801E07C00E07C00707C003838001C1000
07E0>
22 50 -1 49 20] 102 @dc
[<
FFFC1FFF83FFF0FFFC1FFF83FFF00FC001F8003F00078000F0001E00078000F0001E000780
00F0001E00078000F0001E00078000F0001E00078000F0001E00078000F0001E00078000F0
001E00078000F0001E00078000F0001E00078000F0001E00078000F0001E00078000F0001E
00078000F0001E00078000F0001E00078000F0001E00078000F0001E00078000F0001E0007
8000F0001E00078000F0001E0007C000F8001E0007C000F8001E0007A000F4001E0007A001
E4003C000F9001E2003C00FF8C03C1807800FF83078060F0000780FE001FC000>
52 31 -2 30 55] 109 @dc
[<
001FC0FF80007030FF8001C008F80003C004F000038002F000078001F000078001F0000780
01F000078000F000078000F000078000F000078000F000078000F000078000F000078000F0
00078000F000078000F000078000F000078000F000078000F000078000F000078000F00007
8000F000078000F000078000F000078000F000078000F0000F8001F000FF801FF000FF801F
F000078000F000>
33 31 -2 30 37] 117 @dc
[<
800FF000807FFC00C1F01E00C7000700EC000380F80001C0F00000E0E00000E0E00000F0C0
000070C00000788000007880000078800000788000007880000078000000F8000000F80000
00F0000001F0000003F0000007E000001FE00000FFC0000FFF8000FFFF0003FFFC0007FFF8
000FFF80001FF800003FC000003F0000007E0000007C000000F8000000F8000020F0000020
F0000020F0000020F0000060F000006070000060700000E0780000E0380001E03C0003E01E
0006E00F001C6007C0786001FFE020007F8020>
29 51 -4 49 37] 83 @dc
[<
003F8000E0600380180700040F00021E00021E00013C00017C00007C0000780000F80000F8
0000F80000F80000F80000F80000F80000F80000F800007800007C00087C003E3C003E1C00
3E1E001E0F000407000403801800E060003F80>
24 31 -3 30 29] 99 @dc
[<
1F8000000030400000007030000000F810000000F808000000F80C00000070040000000004
00000000020000000002000000000100000000010000000001000000000080000000008000
000001C000000001C000000001C000000003E000000003E000000007D00000000790000000
07900000000F080000000F080000001F040000001E040000001E040000003C020000003C02
0000007C0100000078010000007801000000F000800000F000800001F000400001E0004000
01E000400003C000200003C000200007C000300007800038000FC0007C00FFF801FF80FFF8
01FF80>
33 45 -1 30 35] 121 @dc
[<
FFFF80FFFF8007F00003E00003E00003E00003E00003E00003E00003E00003E00003E00003
E00003E00003E00003E00003E00003E00003E00003E00003E00003E00003E00003E00003E0
0003E00003E00003E00003E00003E00003E00003E00003E00003E00003E00003E00003E000
03E00003E00003E00003E00003E00003E00003E00003E00003E00007F000FFFF80FFFF80>
17 49 -3 48 23] 73 @dc
[<
003F81FF00E061FF038011F0070009E00E0005E01E0003E01C0001E03C0001E03C0001E078
0001E0780001E0F80001E0F80001E0F80001E0F80001E0F80001E0F80001E0F80001E0F800
01E0F80001E0780001E07C0001E03C0001E03C0001E01E0001E00E0003E00F0003E0078005
E001C019E000F061E0001F81E0000001E0000001E0000001E0000001E0000001E0000001E0
000001E0000001E0000001E0000001E0000001E0000001E0000001E0000001E0000001E000
0003E000003FE000003FE0000001E0>
32 50 -3 49 37] 100 @dc
[<
80FE00C301C0CC0060F00030F00038E00018E0001CC0001CC0001C80001C80003C80003C00
00F80001F8003FF003FFE00FFFC01FFF003FF0007E0000F80000F00010E00010E00010E000
10E000306000303000701800F00E033001FC10>
22 31 -2 30 26] 115 @dc
[<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>
46 50 -2 49 50] 65 @dc
[<
FFFF800000FFFF80000007F000000003E000000003E000000003E000000003E000000003E0
00000003E000000003E000000003E000000003E000000003E000000003E000000003E00000
0003E000000003E000000003E000000003E000000003E000000003E000000003E000000003
E000000003E000000003FFFFF00003E0007C0003E0001F0003E000078003E00003C003E000
03E003E00001E003E00001F003E00000F003E00000F803E00000F803E00000F803E00000F8
03E00000F803E00000F803E00000F003E00001F003E00001F003E00001E003E00003C003E0
00078003E0001F0007E0007E00FFFFFFF800FFFFFFC000>
37 49 -4 48 45] 80 @dc
[<
00008000000001C000000001C000000001C000000003E000000003E000000007D000000007
9000000007900000000F080000000F080000001F040000001E040000001E040000003C0200
00003C020000007C0100000078010000007801000000F000800000F000800001F000400001
E000400001E000400003C000200003C000200007C000300007800038000FC0007C00FFF801
FF80FFF801FF80>
33 31 -1 30 35] 118 @dc
[<
000000000F80FFFF80003860FFFF8000701007F00000F01003E00001E00803E00001E00803
E00003E00803E00003E00803E00003E00003E00003E00003E00003E00003E00003E00003E0
0003E00003E00003E00003E00003E00003E00003E00003E00003E00003E00003E00003E000
03E00003E00007C00003E00007800003E0000F800003E0001E000003E0007C000003E001F0
000003FFFF00000003E001F0000003E0003C000003E0000F000003E00007800003E00003C0
0003E00001E00003E00001F00003E00000F00003E00000F80003E00000F80003E00000F800
03E00000F80003E00000F80003E00000F80003E00000F00003E00001F00003E00001E00003
E00003E00003E00007C00003E0000F800003E0003E000007E001FC0000FFFFFFF00000FFFF
FF000000>
45 50 -4 48 49] 82 @dc
/@F3 @newfont
@F3 @sf
[<
0000007C00FFFC01E2000FC003C100078007C08007800FC08007800F808007800F80000780
0F800007800F800007800F000007800F000007800F000007800F000007800E000007801E00
0007801C00000780380000078070000007FFE0000007803C000007800E0000078007800007
8007C000078003C000078003E000078003E000078003E000078003E000078003E000078003
C000078007C000078007800007800E00000F803C0000FFFFE00000>
33 35 -2 33 36] 82 @dc
[<
00FC7F0382780601700E00F00E00F00E00700E00700E00700E00700E00700E00700E00700E
00700E00700E00700E00700E00700E00701E00F0FE07F00E0070>
24 21 -1 20 27] 117 @dc
[<
8FC0D030E018C008C00C800C800C801C003C01F80FF03FE07F80F000E008C008C008C01860
1830780F88>
14 21 -2 20 19] 115 @dc
[<
00FC000703000E00801C0040380020780020700000F00000F00000F00000F00000F00000FF
FFE0F000E07000E07801E03801C01C01C00C038007070001FC00>
19 21 -1 20 22] 101 @dc
[<
FFE00E000E000E000E000E000E000E000E000E000E000E000E000E000E000E000E000E000E
000E000E000E000E000E000E000E000E000E000E000E000E000E001E00FE000E00>
11 35 -1 34 14] 108 @dc
[<
FFFFFF000F803F0007800F0007800300078003000780010007800180078001800780008007
80008007800080078000800780000007800000078000000780000007800000078000000780
00000780000007800000078000000780000007800000078000000780000007800000078000
00078000000780000007800000078000000FC00000FFFE0000>
25 34 -2 33 30] 76 @dc
[<
70F8F8F870>
5 5 -4 4 14] 46 @dc
[<
FFFFFC000F800F00078007C0078003E0078001F0078001F0078000F8078000F8078000F807
8000F8078000F8078000F8078000F0078001F0078001E0078003C00780078007FFFE000780
3E0007800F80078007C0078003E0078001E0078001F0078001F0078001F0078001F0078001
F0078001E0078003E0078003C0078007800F800E00FFFFF800>
29 34 -2 33 35] 66 @dc
[<
FFF00F000E000E000E000E000E000E000E000E000E000E000E000E000E000F000F060F0F1E
8FFE460E3C>
16 21 -1 20 19] 114 @dc
[<
0FC1E03C2390781708F00F08F00708F00708F007087007007807003C07001E070007C70000
FF000007000007000007001807003C0E003C0C001838000FE000>
21 21 -2 20 24] 97 @dc
[<
FFE7FF0E00700E00700E00700E00700E00700E00700E00700E00700E00700E00700E00700E
00700E00700E00700E00700F00700F00701E80E0FE60C00E1F80>
24 21 -1 20 27] 110 @dc
[<
01F0FE070CF00C02E01801E03800E07800E07000E0F000E0F000E0F000E0F000E0F000E0F0
00E0F000E07000E07800E03800E01C01E00C02E00704E001F8E00000E00000E00000E00000
E00000E00000E00000E00000E00000E00000E00000E00001E0000FE00000E0>
23 35 -2 34 27] 100 @dc
/@F13 @newfont
@F13 @sf
[<
020002000200C218F2783AE00F800F803AE0F278C218020002000200>
13 14 -2 14 18] 3 @dc
@F3 @sf
[<
07C000187000203800401C00F01E00F80E00F80F00F80F00700F00000F00000F00000F0000
0F00000F00000F00000F00000F00000F00000F00000F00000F00000F00000F00000F00000F
00000F00000F00000F00000F00000F00000F00000F00000F00001F0003FFF0>
20 35 -2 33 25] 74 @dc
[<
03F0000E0E001803003000806000C0600040C00060C00060C00060C00060C000E06000E060
01C03007C0100F80083F80067F0003FC0003F8000FF8001FC4003F02003E01007801807000
C06000C06000C06000C02000C0200180100180080300060E0001F800>
19 34 -2 32 24] 56 @dc
[<
4020101008080404040474FCFCF870>
6 15 -4 4 14] 44 @dc
[<
FFFE07C0038003800380038003800380038003800380038003800380038003800380038003
800380038003800380038003800380038003800380F3800F8003800080>
15 33 -4 32 24] 49 @dc
[<
0FC000103000201800700C007806007807003003000003800003800001C00001C00001C003
E1E00619E00C05E01805E03803E07003E07001E0F001E0F001E0F001E0F001E0F001E0F001
C0F001C0F001C07003807003803803801807000C0600060C0001F000>
19 34 -2 32 24] 57 @dc
[<
01F000071C000C06001C07003803803803807803C07001C07001C07001C0F001E0F001E0F0
01E0F001E0F001E0F001E0F001E0F001E0F001E0F001E0F001E0F001E0F001E0F001E07001
C07001C07001C07001C03803803803801803000C0600071C0001F000>
19 34 -2 32 24] 48 @dc
/@F11 @newfont
@F11 @sf
[<
FFC07FFCFFC07FFC0E000FC006000F8006000F8003001F0003001F0003FFFF0001FFFE0001
803E0000C07C0000C07C0000E0FC000060F8000060F8000031F0000031F000001BE000001B
E000001BE000000FC000000FC00000078000000780000007800000030000>
30 26 -1 25 33] 65 @dc
[<
187F001D83C01F00E01E00F01E00781E00781E007C1E007C1E007C1E007C1E007C1E00781E
00781E00F01F00E01FC3C01E7F001E00001E00001E00001E00001E00001E00001E0000FE00
00FE0000>
22 26 -1 25 25] 98 @dc
[<
CFE0F830E008E00CC00CC00C003C07F83FF87FE0FF80F000C030C030403020701FB0>
14 17 -1 16 17] 115 @dc
[<
03E00F301E181E181E181E181E181E001E001E001E001E001E001E001E00FFF03FF01E000E
000E000600060006000600>
13 24 -1 23 17] 116 @dc
[<
FFC0FFC01E001E001E001E001E001E001E001E001E001E1C1E3E1D3E1D3EFC9CFC78>
15 17 -1 16 18] 114 @dc
[<
1FC3E07C27E0F81700F80F00F80F00F80F007C0F003E0F000FCF0000FF00000F001C0F003E
0F003E0E003E1E001C3C000FF000>
19 17 -1 16 21] 97 @dc
[<
03FC000F06001C03003C0180780000780000F80000F80000F80000F80000F80000780E0078
1F003C1F001C1F000F0E0003FC00>
17 17 -1 16 20] 99 @dc
/@F12 @newfont
@F12 @sf
[<
FF00FFC01C001E0008001C0008001C00040038000400380006007800020070000200700001
FFE0000100E0000100E0000081C0000081C0000081C0000043800000438000004380000027
000000270000003F0000001E0000001E0000000C0000000C0000000C0000>
26 26 -1 25 29] 65 @dc
[<
8F80F040C020C0308030807000F01FE03FC07F00F000C020C020402060E01F20>
12 16 -1 15 15] 115 @dc
[<
07E00C18380830047000E000E000E000E000E000E00070003008381C0C1C07F8>
14 16 -1 15 17] 99 @dc
[<
07E01C38381C700E6006E007E007E007E007E007E0076006700E300C1C3807E0>
16 16 -1 15 19] 111 @dc
[<
FF9FE7F81C0701C01C0701C01C0701C01C0701C01C0701C01C0701C01C0701C01C0701C01C
0701C01C0701C01C0701C01E0781C01E0781C01D8E6380FC7C1F00>
29 16 -1 15 32] 109 @dc
[<
FF80001C00001C00001C00001C00001C00001C00001CF0001F0C001E07001C03001C03801C
01C01C01C01C01C01C01C01C01C01C01C01C03801C03801E07001F0E00FCF800>
18 23 -1 15 21] 112 @dc
[<
07CFC00C2E001C1E001C0E001C0E001C0E001C0E001C0E001C0E001C0E001C0E001C0E001C
0E001C0E001C0E00FC7E00>
18 16 -1 15 21] 117 @dc
[<
03800E401C201C201C201C201C201C001C001C001C001C001C001C001C00FFC03C001C000C
000C00040004000400>
11 23 -1 22 15] 116 @dc
[<
07E00C18380830046000E000E000E000E000FFFCE00C600C701830181C3007C0>
14 16 -1 15 17] 101 @dc
[<
FFC01C001C001C001C001C001C001C001C001C001C001C001E201E701D70FCE0>
12 16 -1 15 15] 114 @dc
[<
FF801C001C001C001C001C001C001C001C001C001C001C001C001C001C00FC000000000000
0000000000000018003C003C001800>
9 26 0 25 11] 105 @dc
[<
780000E40000E20000E1000001000001000000800000800001C00001C00001C00003A00003
A0000790000710000710000E08000E08001E0C001C04001C04003C0600FF1F80>
17 23 -1 15 20] 121 @dc
[<
10F0001B0C001E07001C03001C03801C01C01C01C01C01C01C01C01C01C01C01C01C01801C
03801E07001F0E001CF8001C00001C00001C00001C00001C00001C00001C00001C00001C00
00FC0000>
18 26 -1 25 21] 98 @dc
[<
1E3C71FBE0F1E071E071E070707030701C7007F000700070207070E070C03F80>
16 16 -2 15 19] 97 @dc
[<
FF9FC01C0E001C0E001C0E001C0E001C0E001C0E001C0E001C0E001C0E001C0E001C0E001E
0E001E0E001D0C00FCF800>
18 16 -1 15 21] 110 @dc
[<
07CFC01C2E00381E00700E00600E00E00E00E00E00E00E00E00E00E00E00E00E00700E0030
0E00380E000C3E0003CE00000E00000E00000E00000E00000E00000E00000E00000E00000E
00007E00>
18 26 -1 25 21] 100 @dc
[<
FFC0FFC0>
10 2 0 8 13] 45 @dc
[<
8040202010101070F0F060>
4 11 -3 3 11] 44 @dc
[<
07E0381C6006C003C003C003C003600F1FFE3FFC3FF07000600020002FC018603030703870
3870387038303018730FCE>
16 24 -1 15 19] 103 @dc
[<
010040000180C0000380E0000380E00003C1E0000741D000074190000F2398000E2388000E
2308001E170C001C1704001C160400380E06003C0E0700FF3F9F80>
25 16 -1 15 28] 119 @dc
[<
FF9FC01C0E001C0E001C0E001C0E001C0E001C0E001C0E001C0E001C0E001C0E001C0E001E
0E001E0E001D0C001CF8001C00001C00001C00001C00001C00001C00001C00001C00001C00
00FC0000>
18 26 -1 25 21] 104 @dc
[<
60F0F060>
4 4 -3 3 11] 46 @dc
[<
03FFE000001C0000001C0000001C0000001C0000001C0000001C0000001C0000001C000000
1C0000001C0000001C0000001C0000001C0000001C0000001C0000001C0000001C0000801C
0080801C0080801C0080C01C0180401C0100401C0100701C07007FFFFF00>
25 26 -1 25 28] 84 @dc
[<
00800001C00001C00001C00003A00003A0000790000710000710000E08000E08001E0C001C
04001C04003C0600FF1F80>
17 16 -1 15 20] 118 @dc
[<
7E00E300E18041C001C001C001C001C001C001C001C001C001C001C001C001C001C001C001
C001C001C001C00FC0000000000000000000000000018003C003C00180>
10 33 2 25 12] 106 @dc
[<
7FE00E000E000E000E000E000E000E000E000E000E000E000E000E000E00FFC00E000E000E
000E000E000E000E100738031801F0>
13 26 0 25 12] 102 @dc
[<
FF801C001C001C001C001C001C001C001C001C001C001C001C001C001C001C001C001C001C
001C001C001C001C001C001C00FC00>
9 26 0 25 11] 108 @dc
[<
FC3FC0381E00181C0008380004380002700003E00001E00001C00003C0000760000720000E
10001C18003C1C00FF3F80>
18 16 -1 15 20] 120 @dc
[<
7F0FF00E07000E07000E07000E07000E07000E07000E07000E07000E07000E07000E07000E
07000E07000E0700FFFFF00E07000E07000E07000E07000E07000E070006070407078E0183
C600FC7C>
23 26 0 25 22] 11 @dc
[<
7F0FE00E07000E07000E07000E07000E07000E07000E07000E07000E07000E07000E07000E
07000E07000E0700FFFF000E00000E00000E00000E00000E00000E02000607000703000182
0000FC00>
19 26 0 25 21] 12 @dc
/@F15 @newfont
@F15 @sf
[<
0C000C008C40EDC07F800C007F80EDC08C400C000C00>
10 11 -3 11 16] 3 @dc
/@F14 @newfont
@F14 @sf
[<
00FC000383000E00801C0040380020300020700010600010E00010E00000E00000E00000E0
0000E00000E000106000107000103000303800301C00700E00B003833000FC10>
20 23 -2 22 25] 67 @dc
[<
07C018303018701CE00EE00EE00EE00EE00E600C600C3018183007C0>
15 14 -1 13 18] 111 @dc
[<
FF80001C00001C00001C00001C00001C00001CF8001F0E001C07001C03801C01801C01C01C
01C01C01C01C01C01C01801C03801C03001F0E00FCF800>
18 20 0 13 20] 112 @dc
[<
7800A400E200E200010001000180018003C003C003C0072007200E100E101C081C083C0C3C
0EFE1F>
16 20 -1 13 19] 121 @dc
[<
FF801C001C001C001C001C001C001C001C001C001C101E381D38FCF0>
13 14 0 13 14] 114 @dc
[<
FF1C1C1C1C1C1C1C1C1C1C1C1C7C0000000000183C3C18>
8 23 0 22 10] 105 @dc
[<
0FE03838600CC006C006C006600E3FFC3FF83FE0600020002F8018C0306070707070707030
6018E30F9E>
16 21 -1 13 18] 103 @dc
[<
FF9FE01C07001C07001C07001C07001C07001C07001C07001C07001C07001C07001E07001D
8E001C7C001C00001C00001C00001C00001C00001C00001C00001C0000FC0000>
19 23 0 22 20] 104 @dc
[<
0F001C8038403840384038403800380038003800380038003800FF80380018001800080008
000800>
10 20 -1 19 14] 116 @dc
[<
07C01830300870086000E000E000E000E000600070103038183807F0>
13 14 -1 13 16] 99 @dc
@F13 @sf
[<
000FC000007FF80001F03E0003800700060001800C0000C018000060300000303000003060
00001860000018C000000CC000000CC000000CC000000CC000000CC000000CC000000C6000
0018600000183000003030000030180000600C0000C0060001800380070001F03E00007FF8
00000FC000>
30 29 -2 22 35] 13 @dc
@F14 @sf
[<
FF803C1C00721C00E11C00E11C00E01C00E01C00E01C00E01C00E01C01C01C07801FFE001C
03801C00C01C00E01C00701C00701C00701C00701C00E01C00C01C0380FFFC00>
24 23 -1 22 26] 82 @dc
[<
03E7E00E17001C0F001C07001C07001C07001C07001C07001C07001C07001C07001C07001C
0700FC3F00>
19 14 0 13 20] 117 @dc
[<
9F00E0C0C0608060806001E01FC07F80FF00E000C040C04060C01F40>
11 14 -1 13 14] 115 @dc
[<
07C01830301070086000E000E000E000FFF8E0187038303018600FC0>
13 14 -1 13 16] 101 @dc
[<
FF801C001C001C001C001C001C001C001C001C001C001C001C001C001C001C001C001C001C
001C001C001C00FC00>
9 23 0 22 10] 108 @dc
[<
FFFFC01C03C01C00C01C00401C00601C00601C00201C00201C00201C00001C00001C00001C
00001C00001C00001C00001C00001C00001C00001C00001C00001C0000FFC000>
19 23 -1 22 22] 76 @dc
[<
60F0F060>
4 4 -3 3 10] 46 @dc
[<
FFFF001C01C01C00E01C00701C00381C00381C00381C00381C00301C00701C00E01FFFC01F
FF801C01C01C00E01C00701C00701C00701C00701C00601C00E01C0380FFFE00>
21 23 -1 22 25] 66 @dc
[<
1F1E70FFE079E039E039703830381E3803F800381038383038601FC0>
16 14 -1 13 18] 97 @dc
[<
FF9FE01C07001C07001C07001C07001C07001C07001C07001C07001C07001C07001E07001D
8E00FC7C00>
19 14 0 13 20] 110 @dc
[<
07CFC0182E00301E00700E00600E00E00E00E00E00E00E00E00E00600E00700E00300E001C
3E0007CE00000E00000E00000E00000E00000E00000E00000E00000E00007E00>
18 23 -1 22 20] 100 @dc
[<
7FF007000700070007000700070007000700070007000700070007000700070007000700FF
0007000300>
12 21 -2 20 18] 49 @dc
[<
1F8020C0603070187018001C000C000E0F8E186E301E601EE00EE00EE00EE00CE00C601830
18183007C0>
15 21 -1 20 18] 57 @dc
[<
0FE03830600CC004C006C006C00E601E607C18F80FF00FC01F603E107818700C600C600C20
18183007E0>
15 21 -1 20 18] 56 @dc
[<
40402020101070F0F060>
4 10 -3 3 10] 44 @dc
[<
07C01C703018701C600C600CE00EE00EE00EE00EE00EE00EE00EE00EE00E600C600C701C30
18183007C0>
15 21 -1 20 18] 48 @dc
[<
FF80001C00001C00001C00001C00001C00001C00001C00001C00001C00001C00001FFE001C
03801C00C01C00601C00701C00701C00701C00701C00601C00C01C0380FFFE00>
20 23 -1 22 24] 80 @dc
[<
FF9FE7F81C0701C01C0701C01C0701C01C0701C01C0701C01C0701C01C0701C01C0701C01C
0701C01C0701C01E0781C01D8E6380FC7C1F00>
29 14 0 13 29] 109 @dc
[<
10F8001B0E001C03001C03801C01801C01C01C01C01C01C01C01C01C01801C03801C03001F
06001CF8001C00001C00001C00001C00001C00001C00001C00001C0000FC0000>
18 23 0 22 20] 98 @dc
[<
FF801C001C001C001C001C001C001C001C001C001C001C001C00FF801C001C001C001C001C
001C200E70067003E0>
12 23 0 22 11] 102 @dc
[<
FF80FF80>
9 2 0 7 12] 45 @dc
[<
0303000303000703800787800787800E86400E4E400E4E401C4C201C3C201C3C2038381038
3838FCFE7C>
22 14 -1 13 25] 119 @dc
[<
0180018003C003C003C0072007200E100E101C081C083C0C3C0EFE1F>
16 14 -1 13 19] 118 @dc
[<
07FFC000380000380000380000380000380000380000380000380000380000380000380000
38000038000038000038008038048038048038044038084038086038187FFFF8>
22 23 -1 22 25] 84 @dc
[<
FC7F383C1838087004F002E001C0038007C007400E201C103C18FE3F>
16 14 -1 13 19] 120 @dc
[<
1F006180C1C0E0E0E0E000E000E000E000E000E000E000E000E000E000E000E000E000E000
E000E000E000E00FFC>
14 23 -2 22 18] 74 @dc
[<
40402020101070F0F06000000000000060F0F060>
4 20 -3 13 10] 59 @dc
0 @eop0
0 0 0 @bop1 314 482 a @F0 @sf(Coping)21 b(with)g(the)h(Threat)g(of)g
(Computer)g(Securit)n(y)-793 91 y(Inciden)n(ts)-772 91 y(A)f(Primer)i
(from)f(Prev)n(en)n(tion)g(through)f(Reco)n(v)n(ery)-830 121 y @F3 @sf
(Russell)15 b(L.)i(Brand)16 -18 y @F13 @sf(\003)-340 115 y @F3 @sf(June)f
(8,)g(1990)q -218 191 a @F11 @sf(Abstract)-638 65 y @F12 @sf(As)e
(computer)g(securit)o(y)h(b)q(ecomes)f(a)g(more)g(imp)q(ortan)o(t)h(issue)f
(in)g(mo)q(dern)h(so-)-1225 45 y(ciet)o(y)m(,)g(it)g(b)q(egins)h(to)f(w)o
(arran)o(t)g(a)h(systematic)f(approac)o(h.)25 b(The)15 b(v)n(ast)h(ma)r
(jorit)o(y)f(of)-1225 46 y(the)g(computer)h(securit)o(y)f(problems)g(and)h
(the)f(costs)g(asso)q(ciated)h(with)e(them)h(can)-1224 46 y(b)q(e)d(prev)o
(en)o(ted)h(with)e(simple)g(inexp)q(ensiv)o(e)i(measures.)k(The)11 b(most)h
(imp)q(ortan)o(t)g(and)-1224 45 y(cost)i(e\013ectiv)o(e)g(of)g(these)g
(measures)g(are)g(a)o(v)n(ailable)g(in)g(the)f(prev)o(en)o(tion)i(and)g
(plan-)-1225 46 y(ning)f(phases.)19 b(These)13 b(metho)q(ds)i(are)e
(presen)o(ted)h(follo)o(w)o(ed)f(b)o(y)h(a)f(simpli\014ed)g(guide)-1224
46 y(to)g(inciden)o(t)g(handling)h(and)g(reco)o(v)o(ery)m(.)-675 1057 y
573 -2 z 45 27 a @F15 @sf(\003)2 12 y @F14 @sf(Cop)o(yrigh)o(t)o 20 -1 a
(c)-26 1 y @F13 @sf(\015)e @F14 @sf(Russell)e(L.)h(Brand)f(1989,)g(1990)g
(P)o(ermission)g(to)h(cop)o(y)f(and)g(redistri)o(but)o(e)g(this)g(infor-)
-1433 39 y(mation)f(in)h(whole)h(or)f(in)g(part)g(is)g(gran)o(ted)o 10 x
(pro)o(vid)o(ed)f(eac)o(h)g(cop)o(y)h(include)o(s)f(attributi)o(on)g(and)h
(the)g(v)o(ersion)o -1433 40 a(informat)o(ion)o(.)23 b(This)14 b(p)q
(ermission)f(extends)g(for)h(one)f(y)o(ear)g(min)o(us)h(one)g(da)o(y)g
(from)g(June)f(8,)i(1990;)g(past)-1433 39 y(that)9 b(p)q(oin)o(t,)g(the)g
(reader)g(should)g(obtain)g(a)h(new)o(er)g(cop)o(y)f(of)h(the)g(article)o
9 x(as)h(the)e(informatio)o(n)g(will)i(b)q(e)f(out)-1433 39 y(of)h(date.)
587 125 y @F9 @sf(0)-988 b
0 @eop1