ADSM-L

ADSM Security Questions

1994-11-17 16:47:00
Subject: ADSM Security Questions
From: "Jon C. Austin" <TSSJCA AT SYSA.ADM.DUKE DOT EDU>
Date: Thu, 17 Nov 1994 16:47:00 EST
Greetings everyone,

   We are a shop starting a roll-out on ADSM, and have brought in
our auditors to help us beat things up. They're pretty happy so
far, but have posed some questions I'd like to see if anyone has
gotten an answer for:


   Explain the security methods used by ADSM in prompted mode
to validate the server. Question is whether someone on IP could
spoof a local ADSM client into thinking it was it's server node.


   Does ADSM encrypt data along the wire between client and server?


   Is there any security beyond client password to prevent spoofing
a DSM server and assuming a client's identity?


Please respond via e-mail. I would prefer not propagating this
discussion on the list in case any would-be lurkers are out there.

Thanks again,

Jon Austin, Systems Programmer
Duke University Computation Center
Durham, NC
tssjca AT sysa.adm.duke DOT edu
<Prev in Thread] Current Thread [Next in Thread>
  • ADSM Security Questions, Jon C. Austin <=