UNIX has a reputation as an operating system that is difficult to secure. This reputation is largely unfounded. Instead, the blame lies partially with the traditional use of UNIX and partially with the poor security consciousness of its users. UNIX's reputation as a nonsecure operating system comes not from design flaws but from practice. For its first 15 years, UNIX was used primarily in academic and computer industrial environments two places where computer security has not been a priority until recently. Users in these environments often configured their systems with lax security, and even developed philosophies that viewed security as something to avoid. Because they cater to this community, (and hire from it) many UNIX vendors have been slow to incorporate stringent security mechanisms into their systems. This paper describes how the history and development of UNIX can be viewed as the source of the most serious problems. Some suggestions are made of approaches to help increase the security of your system, and of the UNIX community.
[1]
Evi Nemeth,et al.
UNIX System administration handbook
,
1995
.
[2]
Barton P. Miller,et al.
An empirical study of the reliability of UNIX utilities
,
1990,
Commun. ACM.
[3]
Stephen G. Kochan,et al.
Unix System Security
,
1986
.
[4]
G. T. Gangemi,et al.
Computer Security Basics
,
2006
.
[5]
Eugene H. Spafford,et al.
Crisis and aftermath
,
1989,
Commun. ACM.
[6]
Clifford Stoll,et al.
The Cuckoo's Egg
,
1989
.
[7]
Donn Seeley.
Password cracking: a game of wits
,
1989,
CACM.
[8]
Eugene H. Spafford,et al.
The COPS Security Checker System
,
1990,
USENIX Summer.