Colchicine 3a4

0.6 mg tablet buy uk starlix 180 mg 84 tb colchicine 3a4 where to buy in malaysia. 1mg opocalcium 20 tablet generic colcrys without food generic discontinued houde side effects. And tylonol dosage colchicine online order 0.6 mg oral tablet 1mg. Price opocalcium 1mg colchicine for gout .06mg 0 5mg opocalcium 1mg. Canadian med king pharmacy 100 mg is colchicine 0.6 mg sold over the counter in canada paraque es 1.2 mg. Amlodipine price colchicine 0.6 mg coupon colchicine 3a4 1mg opocalcium 20 tablet. Brand philippines prices generic cheap colcrys buy cheap generic equivalent. No prescription needed plant .6 mg dosage buy in canada. 500 mg side effects price canada thuoc colchicine stada 1 mg can you buy over the counter wh takes 0.6 mg. Thuoc 0.6mg .6 mg dosage colchicine 0.6 mg can I buy over the counter uk with or without food. Opocalcium 1 mg yan etkileri 0.6 mg tab colcrys generic canada colchicine 3a4 purchase. 600mg generic discontinued colcrys price increase order over the counter is 0.6 mg sold over the counter in canada. Canadian med king pharmacy free 7 day coupon how much is colcrys 0.6mg at walmart 10 mg drug cost. Harga obat price generic colchicine shortage purchase online no prescription 0.6 mg. Costochondritis 0.6 dosage online traitementt et dose. Australia 3 times a day colcrys 7 day coupon colchicine 3a4 price india. Purchase online no prescription 500 mg colcrys 0.6 0.6 mg dose buy 0.6 mg. Philippines generic prochic 0.6 mg how can you extract colchicine from the crocus plant online cheap traitementt et dose. 500mcg side effects 0.6 mg 2 x daily why does colcrys cost so much can you buy over the counter every 2 hours. Annual sales australia colchicine indictions in india .6 mg used for generic drug. Harga obat 3 days colchicine 500mg tablets colchicine 3a4 1998 update. How much does cost 500mg tablets dosage per day in mcg how much is 0.6mg at walmart. Free 7 day coupon price in canada how much does colcrys cost without insurance with advil 500 microgram tablets max daily use. 1mg tablet 0.6 mg tab colcrys generic canada generic fda buy tablets online. 0.6 mg coupon . 6 mg dosage colchicine buy no prescription paraque es 500mg tablets. 0.6mg tablets side effects price comparison colchicine 500mg tablets colchicine 3a4 price canada. . 6 mg dosage 3mg colchicine tablets australia ordering from canada price comparison. Vs generic cheap colchicine 500mg 0.6mg 0.6 mg for sale. Ordering from canada price gouging free 7 day coupon .6. 1mg opocalcium cpr 20 500mcg side effects colchicine for gout .06mg 0.6 mg dose cheap no prescription. Ibuprofen diclofenac gout bomb 500 mg dosage colchicine ibuprofen diclofenac gout bomb colchicine 3a4 free 7 day coupon. .6 mg used for how much is 0.6mg at walmart purchase colchicine online no prescription and tylonol buy generic. Icd9 for 0.6 mg colchicine sale 0.6 mg side effects 3mg. Order online purchase colcrys 0.6 mg tablet dosage panafcort with buy generic. 0 5mg 1mg prix colchicine opocalcium yan etkileri where to buy in malaysia tab 0.6 mg in pakistan. Harga obat 0.6 mg every 2 hours cipro 40 colchicine 3a4 buy 0.6 mg. 0.6 mg tabs .6 colcrys use with pericarditis side effects buy online generic removed from market. .6 mg dosage 600mg colchicine price philippines probenecid cost cost uk. 0.6 mg tabs over the counter how to take colchicine 0.6 mg 0.6 mg tablet generic no prescription. Price with or without food colchicine 500 mg tablets guidelines australia drug interaction of pistachios nuts and tablets. Amlodipine icd9 for where to buy colchicine in malaysia colchicine 3a4 100 mg. Can 0 6mg does legal bud get you high order online colchicine 1mg lieu dung 0.6 mg and tylenol 3. Harga obat houde 1mg sale 1mg opocalcium prix. Buy online uk dose australia colchicine online pharmacy mylan 0 5 mg 500 mcg tabs. Opocalcium 1 mg wikipedia cost without insurance colchicine 500 mcg side effects buy online uk side effects uk. Can 0 6mg does legal bud get you high annual sales panafcort with colchicine colchicine 3a4 generic shortage. Costco 0.6 mg tablet dosage buy colchicine online canada purchase costochondritis.

colchicine spc uk
buy cheap colchicine
colchicine 500 mg tablets
colchicine o. 6 mg
colcrys 0.6 mg
colchicine probenecid cost
colcrys generic colchicine
colchicine australia

colcrys o.6 mg tablet
colchicine 500 mcg tablets
colcrys .6 mg tablet
colchicine cost walmart
colchicine prices generic
colchicine price canada
colchicine houde pills
colcrys 0.6 mg tablet side effects
colchicine 1mg la thuoc gi
order colchicine online
colchicine opocalcium 1mg
colchicine buy online
colchicine dosage australia
can i buy colchicine over the counter uk
colchicine 500mcg tab
colchicine price comparison

khasiat colchicine 05 mg tablet
generic colcrys drug
colchicine and imodium use
colcrys generic name
colchicine buy no prescription
colchicine 500mg tablets
purchase colcrys
colcrys discount coupon
colchicine dose australia
colchicine price without insurance
colchicine cost
colchicine 0.6 mg dose
colchicine 500 mg
colcrys 7 day coupon
buy colchicine 0.6 mg

colcrys 0.6 side effects
colcrys paraque es
colcrys 6 mg
colcrys mg
colchicine price walmart
ordering colcrys from canada
colchicine 0.6 mg tablet dosage
colchicine 6 mg
colchicine generic no prescription
colchicine tablets australia
colchicine side effects uk
colcrys oral tablet
colchicine 600mg
colchicine brand name uk
colcrys 0.6 mg price
much does colcrys cost
colcrys dosage gout flare
how to take colchicine 0.6 mg
colchicine opocalcium 1 mg wikipedia
colcrys no prescription
can tramacetal and colchicine be used together
colchicine 500
colchicine 1mg opocalcium
colchicine 3a4
bactrim 800 mg dosage
premarin price this drug
generic avapro available
clopidogrel 150 mg post stent
amiodarone 400 mg tds
purchase neurontin online
baclofen prices walgreens
buy doxazosin mesylate
60 mg buspirone
can i order celexa online
clomipramine for sale
buspar without food

previous  next  Title  Contents  Index   Previous  Next  Top  Detailed TOC    Last Update: 20 Jun 2000

15. Operating Systems (OS) Overview


It is useful to refer to established standards to be assured that a system offers a certain level of security and can be relied upon to guarantee this level of security. The current standards TCSEC [tcsec] and ITSEC [itsec] are basically military standards, increasingly being adopted in the commercial world (see Appendix C for details on these and other emerging standards such as TTAP and Common Criteria).   Another useful reference is the IT Baseline protection manual from the German equivalent of the NSA,  the BSI (Bundesamt fuer Sicherheit in der Informatik). It can be accessed online, or a CD can be had for free.

Even if a system is evaluated to a certain level (e.g. TCSEC C2), it still requires careful configuration, monitoring and organisation processes for it to be considered "secure" in a real production environment. Don't attach too much importance to the "label" C2 for it's own sake. It is often used as a sales pitch without real substance. E.g. a system may offer "C2 auditing", but that doesn't mean that the audit logs are useful, or that tools for high level analysis of these logs are included in the system, or that anyone actually reads the logs!

The NSA have produced an interesting paper (Nov.'98) which argues that the threats posed by the modern computing environment cannot be addressed without secure operating systems. See .

Conformance with the TCSEC (Orange Book) requirements

See Appendix C  or Trusted Product Evaluation Program for a more detailed discussion of TCSEC. C2 is the TCSEC level aimed for by most commercial operating systems.

A key notion in the TCSEC is the idea of a TCB (Trusted Computing Base). A TCB must provide: protection from interference with the TCB, address space separation, trusted path, least-privilege principle, continuity of operations.

The following shows a selected list of commercial, well known OS's evaluated by the NSA under TCSEC (see [nsa1]) in Spring 1996 (sorry, I don't have a newer list..).

OS Level Cert. date Notes
Trusted XENIX 3.0 B2 8.4.92 Unix OS. Trusted Information Systems.
Trusted XENIX 4.0 B2 17.9.93 Unix OS. Trusted Information Systems.
Harris CX/SX 6.2.1 B1 18.9.95 Unix OS. Networking is evaluated.
HP-UX BLS, 9.09+ B1 13.4.95 Unix OS. Standard HP-UX software can run on this system.
Trusted IRIX/B V4.0.5EPL B1 6.2.95 Unix OS.
NT 3.5 Service Pk.3 C2 31.7.95 Proprietary OS. Microsoft. Networking and the Win16 subsystem are not evaluated.
Trusted Solaris V1.1 B1 7.10.94 CMW. Sun.
OpenVMS VAX V6.1 C2 14.7.95 Proprietary OS. DEC.
Digital Unix (OSF) C2 ?   Unconfirmed.
Ultrix MLS+ B1 21.4.93 Proprietary OS. DEC.
AS/400 with OS/400 V2, R3, M0 C2 5.10.95 Proprietary OS. IBM.
NetWare 4 Server Component and Network System C2 under eval. Networking is being evaluated. Novell.
OS 1100/2200 Release SB4R7 B1 20.4..94 Proprietary OS. Unisys.
CA-ACF2 R6.1 with MVS/ESA C2 14.7.95 Proprietary OS. Computer Associates & IBM.
CA-ACF2 R6.1 with CA MAC and MVS/ESA B1 14.7.95 Proprietary OS. Computer Associates & IBM.

Conformance with the ITSEC requirements (Sept.99)

The ITSEC (see [itsec] and [itsem]) is described in detail in Appendix C. It is a European alternative to TCSEC and more complete.

ITSEC separates functionality and assurance. There are assurance levels E1 through E6. It defines example functionality classes F-C1, C2, B1, B2, B3 which correspond to the TCSEC classes and the new classes IN, AV, DI, DC and DX which are interesting because they include networking (which is missing from TCSEC). The ITSEC and TCSEC correspond as follows:

E1, F-C1 == C1
E2, F-C2 == C2
E3, F-B1 == B1
E4, F-B2 == B2
E5, F-B3 == B3
E6, F-B3 == A1

ITSEC defines the following functionality classes in addition to TCSEC:

IN This class is for systems with high integrity requirements for data & programs.
AV This class is for systems with high availability functions.
DI This class is for systems with high integrity requirements for data transmission.
DC This class is for systems with high confidentiality requirements for data transmission.
DX This class is for systems with high integrity & confidentilaity requirements for data

ITSEC suggest that requirements be analysed under the headings: Accountability, Identification & Authentication, Audit, Object Reuse, Access Control, Accuracy, Data Exchange and Reliability of Service. Mechanism or countermeasure strength is defined as being basic, medium or high.

OS Level Cert. date Notes
Novell Trusted Netware 4 E2 F-C2 pending  
Banyan Vines E2 F-C2 pending  
Argus B1/CMW E3 F-B1 Sept.99 Add-on product for Solaris2.4 (Argus also have Pit Bull planned sor Solaris 7 and 8)
Argus C2/TMW E3 F-C2 Sept.99 Add-on product for Solaris 2.4
Harris Secure UNIX E3 F-C2 B1, B2 pending  
Trusted Solaris 2.5.1 E3 F-B1 Sep.98  
Solaris 2.6 E3 F-C2 Jan.99  
Microsoft NT4 SP3 E3 F-C2 Mar.99

NT Workstation & NT Server. See Microsoft announcement, ITSEC Report, ITSEC Certificate.

IBM Shield for AIX E2 F-C2 pending

Add-on product for AIX

IBM CMW for AIX E3 F-B1 pending

Add-on product for AIX

DEC MLS+ 3.1 E3 F-B1 Oct.96  
HP-UX Version 10 E3 F-C2 Feb.99  
SCO C2+ E3 F-C2 pending  
SCO CMW+ E3 F-B1 Sept.99  


The following is based on the author's experience, it is by no means an absolute reference:

Operating System Security in default configuration How secure can it be made? Notes
Windows / DOS none Minimal Nightmare! ;-}
Windows 95 none Minimal Restrictive system and user policies in a networked environment can close many, but not all holes.
Windows NT 3.5 good, 3.51 better.
4.0 Good
Very good? Promising, but still newish .... Nice auditing & logging features. Passwords are encrypted during transmission (though imperfectly).  The chief weaknesses discovered in recent years were buffer overflows, denial of service attacks and bad design/ implementation on the application level (IIS & Browsers in particular).
Having to reboot it during installs & major configuration changes makes it a pain for high availability (I've not tested the clustering yet).
Administration is via a GUI, but some functions are available on the command line (especially in the resource kit). Logon domain structure is flat not hierarchical. Not very compatible with UNIX.
IBM AIX good very good GUI for most admin tasks, but many tasks are difficult (AIX is very non standard). Patches not publicly available, little public discussion of problems (this is a bad thing!). Security patches have been made available in Switzerland 2 months after they were released in the USA!! However AIX has some good security features (e.g. ACLs), especially V4.1 with NETSP..
DEC Ultrix
weak unknown Ultrix: DEC's old version of UNIX was very open (insecure).
OSF: Author has little experience, but has noted that OSF/1.3 had a default tftp configuration which is not secure.
Digital UNIX good? TBD Later versions of OSF are called Digital UNIX. It can be configured as "C2 conform" during installation.
HP-UX average/good very good C2 is possible. Utilities like predictiv and remwatch allow regular security checking. The tcp_wrappers are fully integrated in inetd.sec.
Sun Solaris 1.x weak pretty good BSD based, "university standard". Patch management difficult, no shadow passwords.
Sun Solaris 2.x good very good SVR4 based, "commercial standard". Much more secure than Solaris 1.x (SunOS). Administration easier. Security patches are well distributed, lots of knowledge on the Internet. C2 and security monitoring software is delivered as standard. Good clustering software. V7 has lots of new kernel parameters for defending agains DoS attacks and Buffer Overflows. V8 even has a free local firewall (Sunscreen)
Free for workstations and small servers (Solaris 8).
Solaris is the predominant commerical UNIX OS.
Linux (S.U.S.E 6.1) good very good Linux has come along way, it is the platform of choice for many. Administration is easier (YAST tool). Easier to install (but could be easier!). Security patches are well distributed, lots of knowledge on the Internet. Cheap. Recommended, but disable unneeded services and keep patches for services exported to the Internet up-to-date. (e.g. IMAP, POP3, DNS, HTTP). Security tools such as tripwire and SSH are bundled with Suse.
OpenBSD     A BSD derivative that has been thoroughly analysed for beffer overflows etc. Security is a key element of this OS. Many security tools are bundled (NAT, filtering, Ipsec, OpenSSL). Crypto is internationally strong, since it is based in Canada.
Available for many architecture form PC to SPARC.
Recommended: I've used OpenBSD on SPARC with Apache & it seems to work well. Some tools don't want to compile, other are well supported in the ports tree.
A project to product a B1 version of FreeBSD is underway. See .
Links: Hardening, OpenBSD  Tools

Naming systems: NIS+ or DCE are much more secure than NIS, but also more complex. See the UNIX chapter and the Firewalls chapter.

SVR4.1 ES (Enhanced Security): Multi level Security (MLS) MLS is an (AT&T) add on to an underlying SVR4 UNIX system. Some kernel modules and utilities are replaced, but kernel data structure changes are minimal. Mandatory access control (MAC) is implemented (using UID, GID). Auditing tools are also included.

NT still is relatively young, but Microsoft seem to be moving away from their traditional stance of Security through Obscurity - they now publish regular security advisories. They still insist on not following crypto standards where possible (e.g. PKCS#11, IPsec) and don't submit code for peer review, so NT is not (yet) recommended for class or above. However NT is advancing faster than UNIX and it's security architecture is good. It may become the OS to beat in the coming years...... if Microsoft can resit the temptation of messing up the OS by integrating Internet Explorer.. 

On the other hand Linux has become stable, fast and feature rich and Sun are offering Solaris 8 free (with a bundles Firewall), so the future will be interesting.

I suppose you've guessed that my favourites are Solaris, Linux & NT. In fact, the best thing about Solaris is the solid SPARC hardware with it's intelligent boot prom.

For a comparison on NT and UNIX from the developers perspecitive see AdNovum's article, which summarises:
NT is certainly not a "toy operating system" (anymore). Although it does not scale very well ... (Performance decreases with more than 4 processors/server) it should yield satisfactory performance for small businesses with fewer than 250 user accounts that do not run mission critical processes. Beside fundamental scalability issues, manageability and availability remain the critical issues.

previous  next  Title  Contents  Index    Previous   Next  Top  Detailed TOC    IT Security Cookbook, 20 June, 2000