<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01//EN"
"http://www.w3.org/TR/html4/strict.dtd">
<!-- ---------------------------------------------------------------- -->
<!-- ---------------------------------------------------------------- -->
<html lang="en">
<head>
<meta http-equiv='content-type' content='text/html; charset=UTF-8'>
<meta http-equiv='content-language' content='en'>
<meta http-equiv='content-style-type' content='text/css'>
<meta http-equiv='pics-label' content='(pics-1.1 "http://www.icra.org/ratingsv02.html" l gen true for "http://securitydigest.org" r (nz 1 vz 1 lz 1 oz 1 cz 1) "http://www.rsac.org/ratingsv01.html" l gen true for "http://securitydigest.org" r (n 0 s 0 v 0 l 0))'>
<meta name="robots" content="index,follow">
<link rel="P3Pv1" title="P3P" href="/w3c/p3p.xml">
<link rel="stylesheet" type="text/css" title="CSS" href="/w3c/css2_elements.css">
<link rel="SHORTCUT ICON" title="ICO" href="/favicon.ico">
<link rel="alternate" type="application/rss+xml" title="RSS" href="/w3c/rss.xml">
<title>The 'Security Digest' Archives (TM) : Main</title>
<meta name="author" content="Curator at The 'Security Digest' Archives (TM)">
<meta name="description" content="An archive dedicated to preserving the early history of internet related Security Digests">
<meta name="keywords" content="Security Digest,Zardoz,UNIX,core,Mailing List,Phage,alt.security,comp.security.misc,misc.security,comp.virus,comp.risks,VIRUS-L,RISKS-L">
<meta name="identifier" content="ISSN 1742-948X 01 (Online) | 2005/03/01">
<link rel="schema.DC" title="DC-SCH" href="http://purl.org/dc/elements/1.1/">
<link rel="schema.DCTERMS" title="DC-TRM" href="http://purl.org/dc/terms/">
<meta name="DC.Title" lang="en" content="The 'Security Digest' Archives (TM)">
<meta name="DC.Creator" lang="en" content="The 'Security Digest' Archives (TM)">
<meta name="DC.Subject" lang="en" content="computer security, history, archives, documents">
<meta name="DC.Description" lang="en" content="An archive dedicated to preserving the early history of internet related Security Digests.">
<meta name="DC.Publisher" lang="en" content="The 'Security Digest' Archives (TM)">
<meta name="DC.Date.created" scheme="ISO8601" content="2002-09-01">
<meta name="DC.Date.modified" scheme="ISO8601" content="2005-01-01">
<meta name="DC.Type" lang="en" scheme="DCTERMS.DCMIType" content="Text">
<meta name="DC.Format" scheme="DCTERMS.IMT" content="text/html">
<meta name="DC.Identifier" scheme="URI" content="http://securitydigest.org/">
<meta name="DC.Identifier" scheme="ISSN" content="1742-948X 01 (Online)">
<meta name="DC.Language" scheme="ISO639-2" content="eng">
<meta name="DC.Rights" lang="en" content="Copyright 2002-2008 securitydigest.org. All rights reserved.">
<meta name="google-site-verification" content="GMTMDECjvu9kk7VrTSdC6E1tilW0zsoryr3eQq5idiI" />
</head>
<body>
<table class="header-table" summary="Navigation for the archive">
<tbody>
<tr>
<td>
<table>
<tbody>
<tr>
<td>
<h1><a href="http://securitydigest.org/" style="text-decoration:none;color:#000000;">The 'Security Digest' Archives (TM)</a></h1>
</td>
</tr>
<tr>
<td class="header-menu"><span class="header-bar">Archive:</span> <a title="Archive about" href="#About">About</a> |
<a title="Archive browse" href="#Browse">Browse</a> |
<a title="Archive search" href="#Search">Search</a> |
<a title="Archive contribs" href="#Contributions">Contributions</a> |
<a title="Archive feedback" href="#Feedback">Feedback</a> <br /> <span class="header-bar">Site:</span> <a title="Site help" href="/site/help/">Help</a> |
<a title="Site index" href="/site/index/">Index</a> |
<a title="Site search" href="/site/search/">Search</a> |
<a title="Site contact" href="/site/contact/">Contact</a> |
<a title="Site notices" href="/site/notices/">Notices</a> |
<a title="Site changes" href="/site/changes/">Changes</a></td>
</tr>
</tbody>
</table>
</td>
<td>
<script type="text/javascript"><!--
google_ad_client = "pub-1478194239509870";
/* Security Digest Archives - Front 728x90 */
google_ad_slot = "5085162600";
google_ad_width = 728;
google_ad_height = 90;
// --></script>
<script type="text/javascript" src="http://pagead2.googlesyndication.com/pagead/show_ads.js"></script>
</td>
</tr>
</tbody>
</table>
<p><!-- ---------------------------------------------------------------- --> <!-- ---------------------------------------------------------------- --></p>
<p class="legal-notice">Please read <a href="/site/notices/">NOTICES</a> for license of use, liabilities and privacy (Updated: 2004/07/09).<br /> Copyright 2002-2008 <a href="mailto:curator@securitydigest.org">securitydigest.org</a>. All rights reserved.</p>
<p class="changes-notice">Recent <a href="/site/changes/">CHANGES</a> to the site (Updated: 2003/06/03):<br />
<table class="changes-notice-table" summary="Recent changes to the archive">
<tbody>
<tr>
<td class="changes-notice-entry">2003-02-01:</td>
<td class="changes-notice-entry">Further material obtained for the <a href="/zardoz/">Zardoz 'Security Digest'</a>.</td>
</tr>
<tr>
<td class="changes-notice-entry">2003-02-01:</td>
<td class="changes-notice-entry">Obtained and archived the <a href="/phage/">Phage List</a>.</td>
</tr>
<tr>
<td class="changes-notice-entry">2003-02-01:</td>
<td class="changes-notice-entry">Obtained and archived the <a href="/tcp-ip/">TCP-IP mailing list</a>.</td>
</tr>
<tr>
<td class="changes-notice-entry">2002-12-12:</td>
<td class="changes-notice-entry">Completed work for Unix Security Mailing List, and infrastructure re-organisation.</td>
</tr>
<tr>
<td class="changes-notice-entry">2002-11-01:</td>
<td class="changes-notice-entry">Added site notices and changes, changed to stylesheets.</td>
</tr>
</tbody>
</table>
<!-- ---------------------------------------------------------------- --></p>
<h2><a name="About"></a></h2>
<h3>Overview</h3>
<p>This site is dedicated to preserving the history of early computer security digests
and mailing lists, specifically those prior to the mid 1990's. This includes the
Unix 'Security Mailing List', through to the Zardoz 'Security Digest' to the Core
'Security List', i.e. those preceeding <a href="http://securityfocus.com/archive/1">BugTraq</a>.
These forums are a valuable insight into the embryonic development of the field
of computer security, especially as it relates to the Internet, and the development
of the Doctrine of Disclosure.</p>
<p>In time, the plan is to build a comprehensive history. At the moment, there's
part of the archives to start with, and a need to fill in the gaps - so if you
can <a href="#Contributions">contribute</a>, please do. The archive will also
store all manner of supporting material (retrospectives, anecdotes, etc), some
of which will be generated by the curator and other interested parties.</p>
<p>People like to visit the British Museum, so why not the Security Digest Museum ? It's an
important part of our online cultural history. Maybe one day, these resources will be
captured in our digital <a title="UNESCO World Heritage" href="http://whc.unesco.org/">World Heritage</a> and a part of the history of technology.</p>
<h3>Owner</h3>
<p>The curator is a technical professional, and he's interested in documenting the history
of computer security, for no other reason than "it was there". You can reach him at
<a href="mailto:curator@securitydigest.org">curator@securitydigest.org</a>.</p>
<h3>Objectives</h3>
<p>The archive has the following objectives:</p>
<table class="objectives-table" summary="Objectives for the archive">
<tbody>
<tr>
<td class="objectives-entry"><span class="objectives-name">Acquire and preserve</span> -- significant computer security mailing lists, newsgroups, forums and discussion artifacts prior to the mid/late 1990's (focus on USENET/ARPANET period).</td>
</tr>
<tr>
<td class="objectives-entry"><span class="objectives-name">Enhance and extend</span> -- by capturing, and creating, ancillary material relating to these artifacts, such as interviews, retrospectives, commentary and so forth.</td>
</tr>
<tr>
<td class="objectives-entry"><span class="objectives-name">Inquire and investigate</span> -- various underlying issues in the development of computer security during this phase, such as the doctrine of disclosure, incident coordination, evolutionary expansion, etc.</td>
</tr>
<tr>
<td class="objectives-entry"><span class="objectives-name">Provide and present</span> -- mechanisms for searching, downloading and inspection of such materials to aid analysis and research by interested parties.</td>
</tr>
</tbody>
</table>
<p><!-- ---------------------------------------------------------------- --></p>
<h2><a name="Browse"></a></h2>
<p>The archive can be browsed:</p>
<table class="archive-brief-table" summary="Summary for TCP-IP List">
<tbody>
<tr>
<td class="archive-brief-head"><a href="tcp-ip/">TCP-IP List</a> <span style="font-style:italic;font-size:89%;">[in progress]</span></td>
</tr>
<tr>
<td class="archive-brief-stats">8 October 1981 - present
(Mike Muuss, Henry W. Miller)</td>
</tr>
<tr>
<td class="archive-brief-descr">Mailing list created for the transition of the ARPANET from NCP to TCP/IP, turned into
a general discussion forum for development and deployment issues relating to TCP/IP,
and illustrates a growing interest in communications security in the technical community.
Initially began in an ad-hoc form as the "TCP-IP Digest" at BRL in 1981, and then formalised
into the "TCP-IP Distribution List" at SRI-NIC in 1982 - both gatewayed to USENET newsgroups
fa.tcp-ip and mod.protocols.tcp-ip, which became the NETNEWS groups comp.protocols.tcp-ip
during 1986/87.</td>
</tr>
</tbody>
</table>
<table class="archive-brief-table" summary="Summary for Unix 'Security Mailing List'">
<tbody>
<tr>
<td class="archive-brief-head"><a href="unix/">Unix 'Security Mailing List'</a> <span style="font-style:italic;font-size:89%;">[completed]</span></td>
</tr>
<tr>
<td class="archive-brief-stats">18 December 1984 - 13 May 1989
(Lyle McElhaney)</td>
</tr>
<tr>
<td class="archive-brief-descr">The UUCP/ARPANET semi-open discussion list resulting from discussions on USENET about
the need for restricted forum dealing with security issues, particularly for
administrators. Started by Lyle McElhaney in 1984, and later run by Andrew Burt,
it is the earliest known forum to specifically concern itself with security and
disclosure of vulnerabilities, but was sporadic and failed to gain momentum before
its demise in 1989.</td>
</tr>
</tbody>
</table>
<table class="archive-brief-table" summary="Summary for Rutgers 'Security List'">
<tbody>
<tr>
<td class="archive-brief-head"><a href="rutgers/">Rutgers 'Security List'</a> <span style="font-style:italic;font-size:89%;">[in progress]</span></td>
</tr>
<tr>
<td class="archive-brief-stats">17 July 1985 - 10 April 1992
(Al Walker [aka. hobbit])</td>
</tr>
<tr>
<td class="archive-brief-descr">Mailing list established by Al Walker in 1985, and gatewayed to NETNEWS group misc.security,
to discuss general topics of security, not specifically related to computer security. The
list ceased and the group had been removed prior to 1995.</td>
</tr>
</tbody>
</table>
<table class="archive-brief-table" summary="Summary for Phage List">
<tbody>
<tr>
<td class="archive-brief-head"><a href="phage/">Phage List</a> <span style="font-style:italic;font-size:89%;">[completed]</span></td>
</tr>
<tr>
<td class="archive-brief-stats">3 November 1988 - 24 May 1989
(Gene Spafford)</td>
</tr>
<tr>
<td class="archive-brief-descr">Mailing list established by Gene Spafford during the 1988 Robert T. Morris
Worm incident. Lasting for 6 months, it acted as a focal point of communication
about the nature of the worm, its impact and its after-effects.</td>
</tr>
</tbody>
</table>
<table class="archive-brief-table" summary="Summary for Zardoz 'Security Digest'">
<tbody>
<tr>
<td class="archive-brief-head"><a href="zardoz/">Zardoz 'Security Digest'</a> <span style="font-style:italic;font-size:89%;">[in progress]</span></td>
</tr>
<tr>
<td class="archive-brief-stats">23 January 1989 - 21 November 1991
(Neil Gorsuch)</td>
</tr>
<tr>
<td class="archive-brief-descr">ARPANET/Internet semi-open discussion mailing list that was an outcome of the failure of
the Unix 'Security Mailing List', and has legendary status in the underground community.</td>
</tr>
</tbody>
</table>
<table class="archive-brief-table" summary="Summary for Core 'Security Mailing List'">
<tbody>
<tr>
<td class="archive-brief-head"><a href="core/">Core 'Security Mailing List'</a> <span style="font-style:italic;font-size:89%;">[in progress]</span></td>
</tr>
<tr>
<td class="archive-brief-stats">23 June 1990 - 12 November 1991
(Neil Gorsuch)</td>
</tr>
<tr>
<td class="archive-brief-descr">The ARPANET/Internet semi-open discussion list that was a sister to the Zardoz 'Security Digest' and
addressed a more restricted "core" audience.</td>
</tr>
</tbody>
</table>
<table class="archive-brief-table" summary="Summary for RISKS List">
<tbody>
<tr>
<td class="archive-brief-head"><a href="risks/">RISKS List</a> <span style="font-style:italic;font-size:89%;">[pending]</span></td>
</tr>
<tr>
<td class="archive-brief-stats">1 August 1985 - present
(n/a)</td>
</tr>
<tr>
<td class="archive-brief-descr">The well known RISKS List, a long standing forum for discussion of risks in information technology</td>
</tr>
</tbody>
</table>
<table class="archive-brief-table" summary="Summary for VIRUS List">
<tbody>
<tr>
<td class="archive-brief-head"><a href="virus/">VIRUS List</a> <span style="font-style:italic;font-size:89%;">[pending]</span></td>
</tr>
<tr>
<td class="archive-brief-stats">1 April 1988 - present
(n/a)</td>
</tr>
<tr>
<td class="archive-brief-descr">The well known VIRUS List, a long standing place for information about viruses</td>
</tr>
</tbody>
</table>
<p><!-- ---------------------------------------------------------------- --></p>
<h2><a name="Search"></a></h2>
<p>The archive can be searched:</p>
<p><!-- Google CSE Search Box Begins --></p>
<form action="/site/search/" id="cse-search-box"> <input type="hidden" name="cx" value="partner-pub-1478194239509870:k2bmf5uzin3" /> <input type="hidden" name="cof" value="FORID:9" /> <input type="hidden" name="ie" value="ISO-8859-1" /> <input type="text" name="q" size="31" /> <input type="submit" name="sa" value="Search" /> </form>
<p>
<script type="text/javascript" src="http://www.google.com/coop/cse/brand?form=cse-search-box&lang=en"></script>
<!-- Google CSE Search Box Ends --> <!-- ---------------------------------------------------------------- --></p>
<h2><a name="Contributions"></a></h2>
<p>The confidentiality of all contributers will be respected.
Best efforts will be made to make contributions available for
viewing within 28 days, with cleaner integration following.
Please send submissions to the <a href="mailto:curator@securitydigest.org">Curator</a>.</p>
<p>This site has benefited from the assistance of the following people (in no particular order): Julian Assange, Nate Lawson, Perlfect, Rick Weldon, Lyle McElhaney, Gene Spafford.</p>
<p><!-- ---------------------------------------------------------------- --></p>
<h2><a name="Feedback"></a></h2>
<p>Please <a href="/site/contact">contact</a> with feedback to help
this archive go forward. I'd like to hear of suggestions for
improvement, compatibility issues, references to new material and
anything else of relevance.</p>
<p><!-- ---------------------------------------------------------------- --> <!-- ---------------------------------------------------------------- --></p>
<table class="footer-table" summary="Adminstrivia for the archive">
<tbody>
<tr>
<td class="footer-entry">ISSN 1742-948X 01 (Online) | 2005/03/01 | <a href="/site/notices/">Copyright 2002-2008 securitydigest.org. All rights reserved.</a></td>
</tr>
</tbody>
</table>
<p>
<script type="text/javascript"><!--
var gaJsHost = (("https:" == document.location.protocol) ? "https://ssl." : "http://www.");
document.write(unescape("%3Cscript src='" + gaJsHost + "google-analytics.com/ga.js' type='text/javascript'%3E%3C/script%3E"));
// --></script>
<script type="text/javascript"><!--
var pageTracker = _gat._getTracker("UA-3655808-1");
pageTracker._initData();
pageTracker._trackPageview();
// --></script>
</p>
</body>
</html>
<!-- ---------------------------------------------------------------- -->