|
What does "keep an eye on" mean? Are people seriously watching to see the device names on their system? Is this a useful security measure? I ask because I want to go the other way somehow. Too many applications now no longer need any real security check to be acceptable. Someone connecting to provide data or to fill in a form most likely has no need to be vetted for security, and if we try to enforce that action then applications will just migrate to servers and applications that solve the problems other ways. We already have to much of a perception of being out of touch with today's needs. imho _______________________ Booth Martin Booth@MartinVT.com http://www.MartinVT.com _______________________ Chuck Lewis <clewis@iquest.net> Sent by: owner-midrange-l@midrange.com 10/18/2000 05:12 PM Please respond to MIDRANGE-L To: MIDRANGE-L@midrange.com cc: Subject: Re: Okay to change QAUTOVRT to zero? Mark, WHY would you have a need for 100 virtual devices (rather than named devices that you can keep an eye on) ? Just wondering :-) Chuck "M. Lazarus" wrote: > Jim, > > At 10/18/00 08:13 AM -0700, you wrote: > >QAUTOVRT and security. > > > >The way to use QAUTOVRT with security in mind is to initially turn it on and > >allow a number of devices to be created. After enough auto devices get > >created > >you turn it off. You now have enough virtual devices for everyone to get onto > >your system that needs too, but no more will be created when someone comes > >along > >and starts disabling them trying to hack into your system. > > IMHO, that's more trouble than it's worth. I don't think it's a good > method to use for security purposes. Let's say you have a legitimate need > for 100 virtual devices (I think that's a *very* conservative number). If > you have password retries set to 3 you're allowing 300 tries for a > hacker. Not very helpful, security wise. > > OTOH, during high demand periods, if 100 is not enough, a legitimate user > will be locked out. > > -mark > > +--- > | This is the Midrange System Mailing List! > | To submit a new message, send your mail to MIDRANGE-L@midrange.com. > | To subscribe to this list send email to MIDRANGE-L-SUB@midrange.com. > | To unsubscribe from this list send email to MIDRANGE-L-UNSUB@midrange.com. > | Questions should be directed to the list owner/operator: david@midrange.com > +--- +--- | This is the Midrange System Mailing List! | To submit a new message, send your mail to MIDRANGE-L@midrange.com. | To subscribe to this list send email to MIDRANGE-L-SUB@midrange.com. | To unsubscribe from this list send email to MIDRANGE-L-UNSUB@midrange.com. | Questions should be directed to the list owner/operator: david@midrange.com +--- +--- | This is the Midrange System Mailing List! | To submit a new message, send your mail to MIDRANGE-L@midrange.com. | To subscribe to this list send email to MIDRANGE-L-SUB@midrange.com. | To unsubscribe from this list send email to MIDRANGE-L-UNSUB@midrange.com. | Questions should be directed to the list owner/operator: david@midrange.com +---
As an Amazon Associate we earn from qualifying purchases.
This mailing list archive is Copyright 1997-2024 by midrange.com and David Gibbs as a compilation work. Use of the archive is restricted to research of a business or technical nature. Any other uses are prohibited. Full details are available on our policy page. If you have questions about this, please contact [javascript protected email address].
Operating expenses for this site are earned using the Amazon Associate program and Google Adsense.
midrange.com
