Re: SSH / X11 auth: needless complexity -> security problems?

From: Casper Dik (Casper.Dikat_private)
Date: Fri Jun 08 2001 - 12:27:57 PDT

Next message: Peter W: "Re: Webtrends HTTP Server %20 bug (UTF-8)"

Previous message: Paul L Schmehl: "Re: Microsoft Security Bulletin MS01-030"
In reply to: Dale Southard: "Re: SSH / X11 auth: needless complexity -> security problems?"
Next in thread: Jan Grant: "nosymfollow Re: SSH allows deletion of other users files..."
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

>The problem isn't the authentication, it's the granularity of the
>authorization that the filesystem affords.  NFS leaves authorization
>up to the client host (aka ``No File Security'').


NFS provides most any level of security you desire; not many vendors
implement NFS security, though.  NFSv4 requires the implementation
of GSS_API (i.e., Kerberos V based) security in NFS.

Don't complain that NFS is insecure if it's just because you don't
want to invest the time to configure it properly.

Casper

Next message: Peter W: "Re: Webtrends HTTP Server %20 bug (UTF-8)"
Previous message: Paul L Schmehl: "Re: Microsoft Security Bulletin MS01-030"
In reply to: Dale Southard: "Re: SSH / X11 auth: needless complexity -> security problems?"
Next in thread: Jan Grant: "nosymfollow Re: SSH allows deletion of other users files..."
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

This archive was generated by hypermail 2b30 : Sun Jun 10 2001 - 14:18:36 PDT