Date: Mon, 13 Oct 1997 20:19:53 -0500 (CDT) From: Jim Bryant <jbryant@unix.tfs.net> To: rivers@dignus.com (Thomas David Rivers) Cc: freebsd-hackers@freebsd.org Subject: Re: C2 Trusted FreeBSD? Message-ID: <199710140119.UAA02130@argus.tfs.net> In-Reply-To: <199710131903.PAA02525@lakes.dignus.com> from Thomas David Rivers at "Oct 13, 97 03:03:52 pm"
next in thread | previous in thread | raw e-mail | index | archive | help
In reply: > > On Mon, 13 Oct 1997, Thomas David Rivers wrote: > > > > > > > > Simon Shapiro writes:> > > > > > > > > Hi Douglas Carmichael; On 13-Oct-97 you wrote: > > > > > Could FreeBSD be made to comply with B1 or C2 trusted system standards > > > > > FOR REAL (unlike NT that can only comply when not hooked up to a > > > > > network)? > > > > > > > > Last I checked (looooong time ago), Unix had the same problem. TCP/IP was, > > > > at the time, inhenerntly un-Orangable. well, i missed this one earlier... ! ! ! W R O N G ! ! ! RFC 791 (IP) addresses this issue in the sections marked type of service / precedence option 130 - security / compartments / handling restrictions / TCC Compartments and Handling values are available from the Defense Intelligence Agency. TCC from DCA. RFC 793 (TCP) section 2.9 addresses this issue. these have ALWAYS been in TCP/IP, and were original design specifications. keep in mind that the protocols were for use by the ARPA which heavily involved weapons research. such options of course involve the physical security of all transmission lines / switches / routers up to and including the gateway to the next security level. next time please read the most basic reference material before making such ignorant comments. the rfcs are a good starting point. ignorance is curable through education. there is no known cure for stupidity though. thank god i caught it in time... jim -- All opinions expressed are mine, if you | "I will not be pushed, stamped, think otherwise, then go jump into turbid | briefed, debriefed, indexed, or radioactive waters and yell WAHOO !!! | numbered!" - #1, "The Prisoner" ------------------------------------------------------------------------------ Inet: jbryant@tfs.net AX.25: kc5vdj@wv0t.#neks.ks.usa.noam grid: EM28pw voice: KC5VDJ - 6 & 2 Meters AM/FM/SSB, 70cm FM. http://www.tfs.net/~jbryant ------------------------------------------------------------------------------ HF/6M/2M: IC-706-MkII, 2M: HTX-212, 2M: HTX-202, 70cm: HTX-404, Packet: KPC-3+
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?199710140119.UAA02130>