At 05:43 PM 10/4/96 -0700, John Fricker <jfricker@vertexgroup.com> wrote:

Security in NT can be defeated by any clever, out of work, bored, NT device driver author who brews up a stealth device driver replacement (perhaps a COM port improvement) that could run amok on the file system or basically do anything.

Good point; if you can talk somebody into installing device drivers, most security guarantees go out the window, and if you can talk a system administrator (i.e. "the user") into installing unexamined code, he's lost. And on PCs, users install unexamined stuff all the time.

Of course, any clever device driver developer is making enough money to not be bored nor even consider writing a backdoor into a driver. Right?

Definitely.... # Thanks; Bill # Bill Stewart, +1-415-442-2215 stewarts@ix.netcom.com America's Open Presidential Debate - Beyond Dole and Clinton! <A href="http://gate.net/~bdcollar/bbe/debate.htm">Tuesday, Oct. 8th 8:00 PM EDT</a>