Conference star::wizards

1474.0. "Open: identifying users" by STAR::JKEENAN () Mon Feb 03 1997 10:37

Return-Path: "VMS001::WWW"@vms001.das-x.dec.com
Received: by vmsmkt.zko.dec.com (UCX V4.1-12, OpenVMS V6.2 VAX);
	Thu, 16 Jan 1997 18:35:18 -0500
Received: from vms001 by mail11.digital.com (8.7.5/UNX 1.5/1.0/WV)
	id SAA16555; Thu, 16 Jan 1997 18:27:59 -0500 (EST)
Date: Thu, 16 Jan 1997 18:27:14 -0500
Message-Id: <[email protected]>
From: "VMS001::WWW"@vms001.das-x.dec.com (16-Jan-1997 1827)
To: [email protected], [email protected], [email protected]
Subject: Ask the Wizard: '[email protected]'
X-VMS-To: [email protected]

Remote Host: gemini.tntech.edu
Browser Type: Lynx/2.5FM  libwww-FM/2.14
Remote Info: <null>
Name: James T. Horine
Email Address: [email protected]
CPU Architecture: VAX
Version: v 6.2
Questions: 

I am fairly new to VMS, so I hope this question doesn't
sound too trivial, but I would very much like to know the
answer.  I have an account on my schools VAX computer
uses the VMS operating system. Our administration has
several programs set up to allow students to type back and
forth to each other on their respective terminals. Normally,
a student's username will be shown when he/she sends someone
a message with the 'Send' command. Recently, I have been
getting unwanted messages from a user who has discovered how
to change the username to hide his/her identity. I would
like to know how this is possible, and if there is some
other way to identify this user. I would appreciate any help you could email me. THanx, James Horine

   The OpenVMS username can not be changed without privileges;
   some other security attack is targeting the local SEND tool.

   Contact your system manager for assistance with this situation,
   as most sites have strict policies against this.

   There are mechanisms available to the system manager that can
   trace down nefarious access.