[11610] in Commercialization & Privatization of the Internet
Re: Internet abuse and firewalls
daemon@ATHENA.MIT.EDU (Robert G. Moskowitz)
Mon Apr 11 04:12:23 1994
Date: Mon, 11 Apr 94 00:05 EST
From: "Robert G. Moskowitz" <0003858921@mcimail.com>
To: com priv <com-priv@psi.com>
John [Francis] Stracke said:
>Right. The first reaction is "OK, put it on a host outside the
>firewall." Problem: if you can't trust anything outside the firewall,
>someone could corrupt that info, which might or might not mean you
>weren't meeting the obligation, but could pretty definitely be bad for
>your image. You'd have to cut a CD-ROM (or, better yet, a WORM) or
>put it on a write-protected floppy or something. (The system can be
>told to set up a file, or filesystem, as read-only; but that can be
>corrupted, too.)
The answer is digital signatures for data files, just like for EMail.
I have been toying around with these ideas and watch for some calls for help
on developing this and standard encrypted sessions between disparate
firewalls on the IETF and FIREWALL list.
BTW, FORD already has announced plans for a WWW server for Lincoln/Mercury
info. Don't know if they have done it or not yet...
Bob
