Amiga Multi-User/Security/Open Standards

[tonyd]

I've tried several alternative OS's.  I haven't tried the new Amiga yet.  If I get around to developing software, it is one of the platforms I plan to support.  What I'm hoping is that they'll add multi-user features, with security.  I hope it will be much simpler than Unix-type systems, with their permissions issues, etc.  We don't need all that.  I hate it when I transfer a file from one system to another and it won't let me open or edit the file because it says I don't have permission.  That's just irritating.  Swap space should always be encrypted in the modern world.  I know there's no such thing as perfect security, and security causes complications.  Amiga wouldn't have to become a server to be the best desktop.  I imagine I would use OpenBSD for servers and Amiga for desktops.  My 2 cents.

[QuikSanz]

@tonyd,

This is one thing I think is needed. At bare minimum a password to get in, You really don't want someone who "thinks" they know computers to be able to get in and screw the pooch. A bit better would be to have 2 passwords, 1 master that would allow anything and a guest one that wont allow any system changes for the genius mentioned above.

Chris

PS: Welcome to AOrg.

[tonyd]

Thanks, QuizSanz.  Or maybe some kid is playing a game, and he doesn't know anything about your system, and accidentally deletes important files.  Or someone just turns on the computer and starts reading your email.

[tonyd]

Maybe if they do have multiple permission levels in the file systems, they could let you set (as the administrator) enforcement levels for your system, globally or per drive, etc. Permissions, of course, are only one issue.

[itix]

Maybe if they do have multiple permission levels in the file systems, they could let you set (as the administrator) enforcement levels for your system, globally or per drive, etc. Permissions, of course, are only one issue.

Amiga has no security. There is no memory protection and programs can read memory contents of other processes at anytime.

[B00tDisk]

Amiga has no security. There is no memory protection and programs can read memory contents of other processes at anytime.

There's a concept in IT security called "security through obscurity".  The Amiga practices the next layer, "security through complete %&$#?@!%&$#?@!%&$#?@!%&$#?@!ing oblivion."

[jj]

There's a concept in IT security called "security through obscurity".  The Amiga practices the next layer, "security through complete %&$#?@!%&$#?@!%&$#?@!%&$#?@!ing oblivion."

Like

[QuikSanz]

Amiga has no security. There is no memory protection and programs can read memory contents of other processes at anytime.

I do remember something about a program that required some kind of input for the machine to  completely boot but that was long ago, don't remember.

Chris

[Oldsmobile_Mike]

I do remember something about a program that required some kind of input for the machine to completely boot but that was long ago, don't remember.

All kinds of programs like that on Aminet.  Stick them early in your startup-sequence and they'll prompt for a password before allowing you to proceed.  Easily bypassed but better than nothing.  I think the guys on this thread want something a little more secure.  

[QuikSanz]

Joe ignorant will not know how to do that, semi safer at least. I guess you could use dual boot and make 1 with this and 1 without and it would do what I want.

[kolla]

The only way to accomplish this is by using a diferent and secure OS under AmigaOS and let the "amiga experience" run within the context of the logged in user. Not much different from running UAE within a user context on Windows/Linux or whatever. MorphOS has this possibility in principle, the entire "user experience" runs as an instant ontop of Quark, in theory many instances could be run simultaniously.

[B00tDisk]

m68k Debian and PPC Debian have both been restarted as living projects for the Amiga, but, at that point a trashcan "core duo" (as in: can literally find in the trash behind office buildings) machine is about a hojillion times more useful.

[gertsy]

There is the 2 factor Security authentication and authorisation concept of "Something I have" and "Something I know".   Put those together in a sentence such as:
"I know I have an Amiga and I wont let anyone else screw with it." And provided you have good physical security you should be okay.

[Matt_H]

There's also this old thing. For 68K Amigas only, though. Only slightly more secure than a startup-sequence password prompt.

Envoy, the networking package, also had some limited security features, but I think they only work via remotely shared devices, not for users on the local machine.

On the hardware side, there's this, which should prevent access to the system as long as you can prevent someone from opening your machine. I think the newer Flash ROM cards can do something similar.

Basically, the most secure a maximally-secured Amiga can be is "can prevent someone from accidentally moving/deleting something, maybe." A moderately experienced user could bypass anything currently available with little effort. The good news for most of us is that almost anyone other than ourselves who might be using our Amigas is not going to be a moderately experienced user

[Boot_WB]

Thanks, QuizSanz.  Or maybe some kid is playing a game, and he doesn't know anything about your system, and accidentally deletes important files.  Or someone just turns on the computer and starts reading your email.

Not sure where AmigaOS is on these things, but MorphOS offers a basic (single) user/password login option on bootup (disabled by default).
Theres also Kryptos (file/partition/drive encryption suite) for anything and everything, system drive excluded (afair).

System files aren't protected from deletion, but randomly deleting lots of files from the system drive is going to end badly on any system.

As for someone 'just reading your e-mails', on a basic level that's really down to the application and user options. Not sure whether YAM/Simplemail offer file encryption, but again these can be stored in encrypted space using Kryptos if so desired.
(At one point I did experiment with an encrypted user drive, but got tired of entering another password every bootup.)

For lower level security, you might be interested in checking Bruce Schneier's blog... nothing to do with Amiga, but interesting if your into that sort of geeky goodness.
His fundamental rule seems to be that security should be designed in from the start at all levels, and not bolted on afterwards using duct tape.