NFS & security (was Re: Complex security mechanism is unsecure)
Neil Rickert
rickert at mp.cs.niu.edu
Mon Dec 17 07:04:54 AEST 1990
In article <RANG.90Dec16131137 at nexus.cs.wisc.edu> rang at cs.wisc.edu (Anton Rang) writes:
>
> Does Sun still install their OS distributions with directories owned
>by bin? This one bit me once, before I realized how easy it was to
>spoof the YP "authentication" (netgroups stuff) which was being used
>to "restrict" (ha!) people from mounting our servers.... Sigh.
Not only that, but they still install their distributions with a '+' in
/etc/hosts.equiv, leaving a security hole big enough to drive a truck
through.
--
=*=*=*=*=*=*=*=*=*=*=*=*=*=*=*=*=*=*=*=*=*=*=*=*=*=*=*=*=*=*=*=*=*=*=*=*=*=*=
Neil W. Rickert, Computer Science <rickert at cs.niu.edu>
Northern Illinois Univ.
DeKalb, IL 60115 +1-815-753-6940
More information about the Comp.unix.internals
mailing list