[26332] in North American Network Operators' Group
Re: After Y2K, critical infrastructure
daemon@ATHENA.MIT.EDU (Alex Pilosov)
Thu Dec 23 21:53:46 1999
Date: Thu, 23 Dec 1999 21:50:43 -0500 (EST)
From: Alex Pilosov <alex@pilosoft.com>
To: I Am Not An Isp <patrick@ianai.net>
Cc: nanog@merit.edu
In-Reply-To: <4.2.0.58.19991223180223.00d58d90@pop.int.pgexpress.net>
Message-ID: <Pine.BSO.4.10.9912232146310.16730-100000@spider.pilosoft.com>
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII
Errors-To: owner-nanog-outgoing@merit.edu
On Thu, 23 Dec 1999, I Am Not An Isp wrote:
>
> At 08:49 PM 12/23/99 -0500, Deepak Jain wrote:
> >
> >> I'm hoping the "hackers" will party and get drunk over New Year's, and
> leave
> >> the so-called critical infrastructure alone. If you think you filled out a
> >> lot of paperwork for Y2K, and you ain't seen anything yet. I for one sleep
> >> much better knowing Microsoft NT is certified C2 ready :-)
> >>
> >
> >Sorry to ruin your sleep. NT is ONLY C2 certified as a standalone
> >workstation. I.e. NO NETWORKING DRIVERS ENABLED.
>
> I thought you had to remove the NIC, the floppy, and a few other things,
> not just software. C2 *Orange* Book, not Red Book.
Actually, as surprising as it is, NT4 has been certified to be Orange Book
C2 (TCSEC, US, non-networked, December 99) and Red Book EC2 (or something
like that) (ITSEC, UK, networked, April 99).
The only thing it proves is that TCSEC and ITSEC evaluations have become
outdated and worthless, IMHO. ;)
-alex
