Well, you know what they say...the only totally secure computer is one that has no keyboard, no monitor, no network connection, and sits in a locked room with 20' concrete walls and a Faraday cage...or something to that effect. Whether you have Solaris 2.5.1, Solaris 10, Windows, or whatever, you are potentially hackable; that's why security in layers is good policy. Performed the hardening as described in a Foxboro document whose title I can't recall at the moment, installing a firewall between the DCS and the rest of the world, using something like SSH to tunnel any connections between the DCS and the rest of the world, securing physical access to the system and the network, intrusion detection/prevention systems -- they don't make you unhackable either, but they all help. Corey Clingo BASF Corp. "Weiss, Andreas" <Andreas.Weiss@xxxxxxxxx> Sent by: foxboro-bounce@xxxxxxxxxxxxx 08/25/2004 01:44 PM Please respond to foxboro To: foxboro cc: Subject: [foxboro] Operating System Updates Hello, every user of an operating system should be aware that his system is a target. A target for criminals and others that are interested to hack the system. It depends on your own reflection of this situation how you handle this risk. I've a big problem with this unpatched Solaris 2.5.1 boxes. They are open for a hacker who is able to connect to the network. A system that is valuable for the business needs to be protected and that includes maintenance (installing patches). Regards Andreas BP Koeln _______________________________________________________________________ This mailing list is neither sponsored nor endorsed by Invensys Process Systems (formerly The Foxboro Company). Use the info you obtain here at your own risks. Read http://www.thecassandraproject.org/disclaimer.html foxboro mailing list: //www.freelists.org/list/foxboro to subscribe: mailto:foxboro-request@xxxxxxxxxxxxx?subject=join to unsubscribe: mailto:foxboro-request@xxxxxxxxxxxxx?subject=leave