From [email protected] Thu Jan 28 12:38:13 1993
Return-Path: <[email protected]>
Received: from nkosi.well.sf.ca.us by well.sf.ca.us with SMTP
(5.65c/SMI-4.1/well-921206-1)
    id AA04924; Thu, 28 Jan 1993 12:38:03 -0800
Received: from chiron.csl.sri.com by nkosi.well.sf.ca.us
(5.65c/SMI-4.1/nkosi-921118-1)
    id AA18476; Thu, 28 Jan 1993 12:37:56 -0800
Received: by chiron.csl.sri.com id AA19411
 (5.65b/IDA-1.4.3.12 for [email protected]); Thu, 28 Jan 93
12:39:14 -0800
From: RISKS Forum <[email protected]>
Sender: RISKS Forum <[email protected]>
Date: Thu, 28 Jan 93 12:39:13 PST
Subject: RISKS DIGEST 14.00
Reply-To: [email protected]
To: [email protected]
Message-Id: <[email protected]>

RISKS-LIST: RISKS-FORUM Digest  Somewhen 1993  Volume 14 : Issue ??
(00)

       FORUM ON RISKS TO THE PUBLIC IN COMPUTERS AND RELATED
SYSTEMS
  ACM Committee on Computers and Public Policy, Peter G. Neumann,
moderator

 Contents:
SUMMARY OF RISKS VOLUME 14, collected in RISKS-14.00 (3 Nov 92 - 1
Jul 93?)

The RISKS Forum is moderated.  Contributions should be relevant,
sound, in
good taste, objective, coherent, concise, and nonrepetitious.
Diversity is
welcome.  CONTRIBUTIONS to [email protected], with relevant,
substantive
"Subject:" line.  Others may be ignored!  Contributions will not
be ACKed.
The load is too great.  **PLEASE** INCLUDE YOUR NAME & INTERNET
FROM: ADDRESS,
especially .UUCP folks.  REQUESTS please to
[email protected].

Vol i issue j, type "FTP CRVAX.SRI.COM<CR>login
anonymous<CR>AnyNonNullPW<CR>
CD RISKS:<CR>GET RISKS-i.j<CR>" (where i=1 to 13, j always TWO
digits).  Vol i
summaries in j=00; "dir risks-*.*<CR>" gives directory; "bye<CR>"
logs out.
The COLON in "CD RISKS:" is essential.  "CRVAX.SRI.COM" =
"128.18.10.1".
<CR>=CarriageReturn; FTPs may differ; UNIX prompts for username,
password.

For information regarding delivery of RISKS by FAX, phone
310-455-9300
(or send FAX to RISKS at 310-455-2364, or EMail to
[email protected]).

ALL CONTRIBUTIONS CONSIDERED AS PERSONAL COMMENTS; USUAL
DISCLAIMERS APPLY.
Relevant contributions may appear in the RISKS section of regular
issues
of ACM SIGSOFT's SOFTWARE ENGINEERING NOTES, unless you state
otherwise.

-----------------------------------------------------------------
-----

RISKS 14.01  04 November 1992
 Tandem Clock Outage (J. Lyngved via Paul Hicks and Bruce Baker)
 Re: Air Inter A320 descent (Pete Mellor)
 Re: Leaving greasy marks on monitors may be dangerous (Pete
Mellor)
 Re: Risks of Cellular Speech (Phil Karn, Dave King)
 Re: Cash dispenser fraud (Pete Mellor)
 Re: Caller-ID and Modems (A. Padgett Peterson)
 Re: Symantec/Borland [and Brazilian President] (Rob Horn,
anonymous)
 Re: Interesting/obscure interaction between users (Jerry
Leichter)
 Re: 15th NCSC - eavesdropping (Brinton Cooper, Carl Ellison)
 Re: New risk reports (Pete Mellor)
 ASEE '93 EPPD Call for Papers (Ken Sollows)
RISKS 14.02  9 November 1992
 Voting Machine Horror Story (Al Stangenberger)
 Phone voting in NM (Gary McClelland)
 Salvage Association vs CAP Financial Services (Les Hatton)
 Computer system blamed for lack of official trade figures (John
Jones)
 Privacy Digests (PGN)
 Another TV show showing computer `hackers' (Matthew D. Goldman)
 Re: Encryption Keys (Glenn Story, Steven Tepper, D. Longley)
 Re: Risks Of Cellular Speech (Johnathan Vail)
 London Ambulance Service computer fails again (Tony Lezard, Paul
Johnson)
 Re: Cash dispenser fraud (Thor Lancelot Simon, Antoon Pardon)
RISKS 14.03  10 November 1992
 "To ensure the continuing access of law enforcement" (Jyrki
Kuoppala)
 Credit Thieves (Paul Robinson)
 Concerns about quality in products of modern technology (Ralph
Moonen)
 New emphasis for SDIO (Diego Latella)
 Accountant's error catches thief! (Joe Grace)
 Cellular misinformation (Barry C. Nelson)
 Re: Key Registration (Alec Isaacson, Peter Wayner [2], Andrew
Klossner)
 Re: Interesting/obscure interaction between users (Rich Kulawiec)
RISKS 14.04  11 November 1992
 Abuse of federal computer access (Barry C. Nelson)
 Therac-25 (Nancy Leveson)
 When "yes" means "no" (More voting screwups) (Ted Shapin)
 Re: Voting Machine Horror Story (David Conrad)
 Voicemail problems (C Martin)
 FBI digital telephony article in IEEE Institute (M. Granger
Morgan via
     Lance Hoffman)
 Key registration risks (Phil Karn, Otto Tennant, Robert
Philhower, PGN)
 Re: Risks Of Cellular Speech (Robert Gezelter)
 Re: Persistent resources and hypertext (David A. Honig)
RISKS 14.05  16 November 1992
 Voting fraud (is it an accident?) (Ray Todd Stevens)
 Safe Conduct (Jonathan Bowen)
 Retirement award trips up a crook (Ray Todd Stevens)
 PINs and Needles (Dik Winter)
 Re: "End-Running" Key Registration (Bob Frankston)
 Re: Cellular Phones in Aircraft (Berry Kercheval)
 Re: Voice mail systems (Jim Purtilo)
 Radio to remote computer protocol design (Edward J. Huff)
 Re: RISKS of technical people disengaging brain (Daniel Lance
Herrick)
 Re: Credit Thieves (and learning from mistakes) (Michael J. Zehr)
 Re: Accountant's error catches thief! (D King)
 Re: Caller-ID (yet again) (Greg Rose)
 UNIX security Tutorials (7 Dec, San Jose) (Sun User Group
Conference)
   (Nancy Frishberg)
 Papers accepted for AUSCRYPT'92 (Yuliang Zheng)
RISKS 14.06  17 November 1992
 "Computer programming error" reverses election (Nathan K. Meyers)
 Detecting Voting Problems (Fred Baube)
 Inaccurate stock system believed to cause British Air large
losses (John Jones)
 England fights on against system failures: LAS, aging systems
(James H. Paul)
 Stock price too high? (David Wittenberg)
 $Million per second -- CHIPS (John Sullivan)
 Re: Tandem's clocks (Don Stokes)
 Photography from orbit (Daniel Burstein)
 Smart cars? (Steve Mestad)
 Warrants without notification (Steve Mestad)
 Re: Two hackers caught tapping into Boeing, federal computers
(Graham Toal)
 Registering your color copier/printer (Carl M. Kadie)
 Self-configuring devices (David A. Honig)
 November Scientific American Article on Risks (Greg Phillips)
RISKS 14.07  18 November 1992 [misdated 17 Nov]
 Re: Recommended POLL FAULTING by RISKS folks (Rebecca Mercuri)
 Cordless phone users gain some privacy rights (Jerry Leichter)
 How to tell people about risks? (Xavier Xantico)
 Risks of DYI Home movies (Alex Heatley)
 Re: A320 descent anomalies -- reported in French press (Pete
Mellor)
 Redressing the record on English system maintenance (James H.
Paul)
 Re: Safe Conduct (Ken Tindell)
 Re: Risks of cellular phones in aircraft (James Olsen, Dan
Sorenson, Bob Rahe)
 Re: Key registration: a naive thought about encryption (Martyn
Thomas)
 Re: RISKS of technical people disengaging brain, encryption,
outlaws ...
     (Mike Dixon, Dan Swartzendruber, Ken Arromdee, John Sullivan,

     Robert Hartman)
RISKS 14.08  21 November 1992
 Installer Programs (Macintosh) (Mark Thorson)
 Election hardware and software problems (A Urken)
 How to talk about risks (Alan Wexelblat, Stuart Wray, Rob
Cameron,
   Mike Coleman, Pete Mellor, L. Bootland,
 Re: Software Reliability - how to calculate? (Pete Mellor to
Janet Figueroa)
 Re: POLL FAULTING recommended for RISKS folks (Pete Mellor)
 Advanced technologies for automotive collision avoidance (Pete
Mellor)
 Wanted: GRADUATE PROGRAM in RISKS (Simson L. Garfinkel)
 "The Information Society" (Bob Anderson)
 An airline software-safety database? (Dave Ratner)
RISKS 14.09  24 November 1992
 BNFL Sellafield nuclear incident (Peter Ilieve)
 Privacy Risks of Computerized Medical Billing (Paul Kleeberg via
John Bonine)
 Teller machine networks (Steve Holzworth)
 Re: Election HW/SW problems (Rebecca Mercuri)
 The ultimate in anti-virus, anti-invasion security (Lee S.
Ridgway)
 Technophones (David Honig)
 Re: London Ambulance Service (Trevor Jenkins)
 Mathematics of Dependable Systems (conference announcement, Vicky
Stavridou)
RISKS 14.10  25 November 1992
 Police and Database [another name confusion] (Stanley (S.T.H.)
Chow)
 Nuclear-plant risks in the US (Alan Wexelblat)
 Re: Election HW/SW Problems (Bill Murray)
 Voting-machine humor (submitted by Joshua E. Muskovitz from
rec.humor.funny)
 Re: Smart cars? (Brinton Cooper)
 Re: Installer problems (Richard Wexelblat)
 Re: How to tell people about risks? (Richard Stead, John A.
Palkovic,
   Arthur Delano, Phil Agre, George Buckner, Chaz Heritage)
 Re: Stock price too high? (John R. Levine, Randall Davis)
RISKS 14.11  27 November 1992
 Re: Computer Security Act and Computerized Voting Systems (Roy G.
Saltman,
   Rebecca Mercuri)
 How Is Technology Used for Crime in the Post-Hacker Era? (Sanford
Sherizen)
 Re: Nuclear plant risks (Brad Dolan)
 Re: Installer Programs (John Bennett, Mathew)
 Re: How to tell people about risks? (Sanford Sherizen, Mark Day)
 Change in the Maximum Length of International Telephone Numbers
(Nigel Allen)
 Humorous submissions for a book (Andrew Davison)
RISKS 14.12  30 November 1992
 Laser Printer Sucks up Cat (Douglas M. Kavner)
 British Telecom find themselves being a phone pest (David
Shepherd)
 "The risk is not obvious" (Don Norman, Rex Black)
 Re: Name confusions? (Don Norman, Jerry Leichter)
 Electronic Banking Risks (Ross Anderson)
 Re: How Is Technology Used for Crime ... (FoFP)
 SNL accidentally informs people about risks of caller ID (Sean
Eric Fagan)
 Re: Nuclear plant risks (Victor Yodaiken)
RISKS 14.13  2 December 1992
 Blackmail risk in thefts from general practitioners (Paul
Leyland)
 Computerized Voting (Doug Hardie)
 Global Positioning System - Position Errors (Stuart Bell)
 Re: Laser Printer Sucks up Cat (Dan Sorenson)
 Smokey is not always a bear (Alan Dahl)
 A310 Aerobatics (Karl Swartz)
 New Distributed Systems Engineering Journal (Morris Sloman)
RISKS 14.14  2 December 1992
 Akron BBS trial update! (David Lehrer)
 Holiday reading on Risks (Phil Agre)
 Re: Books on Probability (Pete Mellor)
 FME'93 Call For Participation and Programme (Peter Gorm Larsen)
RISKS 14.15  7 December 1992
 Similar But Different User Interfaces and Traces of Memory (Tom
Swiss)
 Name Confusion and Democratic Concept of Limited Government (Roy
G. Saltman)
 Re: Police and Database [name confusion with twist] (Alan (A.G.)
Carter)
 Toronto Stock Exchange Virus Scare (Shyamal Jajodia)
 Re: Akron BBS trial update! (Phil Karn)
 Risks of children using BBSes (Re: Akron BBS ..) (Michael P.
Deignan)
 Lost Technology (A. Padgett Peterson)
 Re: Computer theft from GP's; encryption is not a cure-all
(Julian Thomas)
 Turn Signals (John Sullivan)
 Estimating risks (Jerry Leichter)
 Revenge via computer  (Thomas Dzubin)
 Re: Risk reduction: Human Factors (Chris Norloff)
 Flood Stories (Lindsay F. Marshall)
 Re: holiday reading on Risks (Gary McClelland)
RISKS 14.16  8 December 1992
 Name confusion and its implications -- PART ONE (Don Norman,
Guest
   Moderator, with contributions from Will Taber, George Buckner,
   Eric Johnson, Brian Hawthorne, Russell Aminzade, Bob Frankston,

   Chris Hibbert)       [PART TWO IS IN RISKS-14.17.]
RISKS 14.17  8 December 1992
 Name confusion and its implications -- PART TWO (Don Norman,
Guest
   Moderator, with contributions from Amos Shapir, J. Brad Hicks,
   Tarl Neustaedter, Chris Hibbert, Will Taber, Andrew Shapiro,
Olaf Titz,
   Wayne A. Christopher, Craig Hansen, Jim Morris, Simon Marshall,

   Gary McClelland, Craig Partridge)    [PART ONE IS IN
RISKS-14.16.]
RISKS 14.18  10 December 1992
 Miscarriages -- chip workers in the U.S., VDT users in Finland
(PGN)
 Programming errors affect state lottery (Mark Seecof)
 Systems causing unintended changes in behaviour (Doug Moore)
 ACM Code of Ethics and Professional Conduct; Ethics Starter Kit
(PGN)
 Computers do it better (Don Norman)
 Traces of Memory and the Orange Book (Kraig R. Meyer)
 Library sans card catalog (Patrick White)
 Defence against hackers may be illegal; login banners grow (John
Lloyd)
RISKS 14.19  22 December 1992
 Computer error leaves Bundestag speechless (Debora Weber-Wulff)
 Doctor service phone logs skewed (Steen Hansen)
 Statistical biasing (Clay Jackson)
 Solution found to risks of computers in elections! (Jan I.
Wolitzky)
 Overheard by Don Knuth on recent trip (Phyllis Winkler via Les
Earnest)
 Flying Books Threaten Computer Inventory (Bill McGeehan)
 Navy Cancels Jammer System (PGN)
 Public information (Phil Agre)
 Call for Comments on Computing and the Clinton Administration
(Gary Chapman)
RISKS 14.20  31 December 1992
 Another Jail Computer Glitch (PGN)
 Antiviral technology target of legal action
 Dutch chemical plant explodes due to typing error (Ralph Moonen)
 911 in Massachussetts (Barry Shein)
 What about "little brother?" (Brian Seborg)
 Re: Electronic democracy (Barbara Simons)
 Re: Programming errors affect state lottery (Charles D. Ellis)
 Re: Bundestag speechless (Boris Hemkemeier, Markus U. Mock,
Daniel Burstein)
 Latest (?) credit card scams (Jerry Leichter)
 Risks of satellite-controlled anti-theft devices (Jim Griffith)
 OECD Security Guidelines (Marc Rotenberg)
RISKS 14.21  31 December 1992
 3rd Conference on Computers, Freedom and Privacy (Bruce R Koball)
RISKS 14.22  4 January 1993
 Things that cannot possibly go wrong (Pete Mellor)
 DISA yaks to FCC on PCS (Paul Robinson)
 Re: Dutch chemical plant explodes (Nancy Leveson, Meine van der
Meulen)
 Re: Antiviral company target of legal action (Aryeh Goretsky)
 Microprocessor design faults (Brian A Wichmann)
 Call for Papers, 1993 National Computer Security Conference (Jack
Holleran)
RISKS 14.23  7 January 1993
 Leap Year Causes Problems for ATM Machines (Conrad Bullock)
 Ross Perot Campaign Steals Credit Data? (Richard N. Kitchen)
 Computer failures in B767 (Wm Randolph Franklin)
 Laserprinter Forgery (Matt Healy)
 Large Foreign Exchange Rates (R. Y. Kain)
 Stolen to order systems (Lord Wodehouse)
 Prosecution in the Cindu case (Meine van der Meulen)
 Re: Microprocessor Design Faults (A. Padgett Peterson)
 Release of Maps to NGOs? (Daniel J Yurman)
 AFCEA ACCE Conference Announcement (John Wack)
RISKS 14.24  11 January 1993
 Organizational Analysis in Computer Science -- PART ONE (Rob
Kling)
RISKS 14.25  11 January 1993
 Organizational Analysis in Computer Science -- PART TWO (Rob
Kling)
RISKS 14.26  12 January 1993
 Florida Rental Car Scam (Dewey Coffman)
 Computer games may endanger your health (Olivier MJ
Crepin-Leblond)
 Ford's honesty saves county $2 million (John Cigas)
 Name+birthdate=no drivers license (Bruce Hayden)
 Student Load Errors Blamed on Computer (Steve Peterson)
 "Softkiller" as Arts? (Klaus Brunnstein)
 Computer Theft of Criminal Records (Gary McClelland)
 Computer hacking of flight details "was illegal" (Jonathan Bowen)
 Upcoming Telephone Number problems (Rob Horn)
 FAA prohibits pilot knowing GPS altitude in IFR flight (Jim
Easton)
 Risks of networks (Larry WB Ching via Monty Solomon and Jerry
Leichter)
 Version numbers (Andrew Marchant-Shapiro)
 About Computer Expense... (Paul Robinson)  [humor?]
 Re: Large Foreign Exchange Rates (Mark Brader, Peter Trei, Dik
Winter)
 Correction on Computers, Freedom and Privacy 1993 (Bruce Koball)
 1993 Complex Systems Engineering Synthesis and Assessment (C.A.
Meadows)
RISKS 14.27  13 January 1993
 Under 50 miles hurts with Hertz [Hertz hat kein Herz?] (Bruce
Baker)
 Re: Computer games may endanger your health (Rick Russell, J.
Eric Townsend)
 Medical Records on smart cards (John Gray)
 DoJ Has NOT "Authorized" Keystroke Monitoring (Dennis D.
Steinauer)
 More on the Orange Book (Kraig Meyer)
 Slipstreamed Software Changes, the Titanic, and my Pontiacs
   [Re: Version Numbers, sort of] (A. Padgett Peterson)
 Public Service for Cornell Hackers (dclawson)
 Killing me with kindness [extra MHz] (Bear Giles)
 Re: name+birthdate=no driver's license (Jim Roberts, Andrew
Koenig)
 Re: Upcoming Telephone Number problems [4 messages, somewhat
redundant]
   (Andrew Klossner, Kraig Meyer, Randal L. Schwartz, Spencer W.
Thomas)
RISKS 14.28  19 January 1993
 Racetrack goes to the dogs as computer fails (Mark Colan via John
Markoff)
 Earthwinds balloon crash (John Sullivan)
 More on the Air-Inter politics (Peter B Ladkin)
 Attempted Mindvox Break-in (John F. McMullen)
 New E-journal on computer security (J.B. Condat)
 Lautro assessment of computer reliability (Pete Mellor)
 Released GSA Docs Slam FBI Wiretap Proposal (Dave Banisar)
 Four charged with theft of registration microfilms in Sapporo
Japan (Hank)
 Nintendo and Epileptic attacks (Marvin Moskowitz, Robert A.
Morris)
RISKS 14.29 Weds 27 January 1993
 Synthesis report on DoD software problems (James H. Paul)
 EM Radiation - is smoking safer? (Paul Menon)
 Brazilian Banking Reserve Data Disappear (Sanford Sherizen)
 Clinton Transition Team E-Mail (David Daniels)
 Computer promises nothing (Conrad Bullock)
 The FBI and Lotus cc:Mail (Dick Joltes)
 A stopped clock never foils? (Paul Eggert)
 Re: Racetrack goes to the dogs as computer fails (Conrad Bullock)
 Request to Post Office on Selling of Personal Information (Dave
Banisar)
 TAPSOFT '93, APRIL 13-16, 1993,  ORSAY, FRANCE (Cliff B Jones)



Downloaded From P-80 International Information Systems 304-744-2253

You are viewing proxied material from infinitelyremote.com. The copyright of proxied material belongs to its original authors. Any comments or complaints in relation to proxied material should be directed to the original authors of the content concerned. Please see the disclaimer for more details.