IT Baseline Protection Manual - The Information Warfare Site
19.12.2012 Views
Share Embed Flag

IT Baseline Protection Manual - The Information Warfare Site

IT Baseline Protection Manual - The Information Warfare Site

IT Baseline Protection Manual - The Information Warfare Site

SHOW MORE
SHOW LESS
ePAPER READ
DOWNLOAD ePAPER
iwar.org.uk

Create successful ePaper yourself

Turn your PDF publications into a flip-book with our unique Google optimized e-Paper software.

START NOW

Safeguard Catalogue - Communications Remarks<br />

____________________________________________________________________ .........................................<br />

If this option is not specified, write/read access is only<br />

possible to the /usr/spool/uucppublic directory.<br />

Directories to which access is allowed by means of this option<br />

must be documented together with the reasons for access. On<br />

no account should the root directory or the one containing the<br />

UUCP configuration files be entered here.<br />

NOWR<strong>IT</strong>E/NOREAD<br />

This specifies exceptions to the WR<strong>IT</strong>E/READ option.<br />

Directories containing sensitive information should generally<br />

be listed here. This prevents access to such directories by remote<br />

<strong>IT</strong> systems resulting from negligence to impose<br />

restrictions if higher-level directories are released with<br />

READ/WR<strong>IT</strong>E.<br />

PUBDIR<br />

This can be used to specify a public UUCP directory in place<br />

of /usr/spool/uucppublic. For UUCP communication<br />

involving several <strong>IT</strong> systems, a separate UUCP directory must<br />

be stated here for each of these systems.<br />

CALLBACK<br />

If CALLBACK is set to YES. the local <strong>IT</strong> system must call<br />

back the calling <strong>IT</strong> system before data exchange can be<br />

commenced. Of course, this is only useful for LOGNAME entries.<br />

<strong>The</strong> communication partners should agree on who is to<br />

activate a CALLBACK:<br />

MYNAME<br />

If MYNAME=name is set, the local system identities itself<br />

with name instead of the computer designation when a UUCP<br />

connection is established with a remote system. This feature<br />

should be used for identification with a name which is<br />

intended exclusively for this connection and is thus difficult to<br />

ascertain.<br />

VALIDATE<br />

If VALIDATE=name is set, only <strong>IT</strong> systems listed under<br />

name can establish a connection via the systems listed under<br />

LOGNAME. This option must, on all accounts, contain an<br />

entry, otherwise remote <strong>IT</strong> systems will be capable of<br />

masquerading by impersonating another computer name using<br />

MYNAME:<br />

SENDFILES<br />

<strong>The</strong> default setting (SENDFILE=CALL) should be retained<br />

here, so that jobs in the local queue are only transferred<br />

outside on establishment of a connection by the local <strong>IT</strong><br />

system.<br />

____________________________________________________________________ .........................................<br />

<strong>IT</strong>-<strong>Baseline</strong> <strong>Protection</strong> <strong>Manual</strong>: Oktober 2000

logo

products

Resources

Company

Terms of service
Privacy policy
Cookie policy
Cookie settings
Imprint
Change language
Made with love in Switzerland
© 2024 Yumpu.com all rights reserved

Hooray! Your file is uploaded and ready to be published.

Saved successfully!

Ooh no, something went wrong!