Re: nis & shadow
As I said before it's moot anyway because I can sniff the packets off the
ethernet. Don't be so sure that someone who plugs into your net can't steal your
IP. What do you think happens if I assign a privileged machine's IP address to
my box? I bet if I can get an arp reply out faster than you then I get your IP
address. This shouldn't be too challenging, just write the code in DOS to
shorten the code path. Besides, are you aware that many ethernet cards will let
you program in the hardware address? You're naive if you think you've got
everything locked up tight.
Gabriel Millerd wrote:
> -----BEGIN PGP SIGNED MESSAGE-----
> Hash: SHA1
> On Thu, 19 Feb 1998, Jens B. Jorgensen wrote:
> > This is true. However note how you said "if the request for the map
> > comes from a non-root user". How do you supposed the NIS server
> > determines that you're "not a root user"? I'll tell you: ident. I can
> > whip up an ident server on my NT box in two minutes that'll tell you I'm
> > any user I want. This is not security.
> Dont you have to break down the door of the NOC, put your NT box
> on my lan an take my host off first? Why would it care waht your UID is if
> your not a valid host to feed maps to.
Jens B. Jorgensen
TO UNSUBSCRIBE FROM THIS MAILING LIST: e-mail the word "unsubscribe" to
Trouble? e-mail to firstname.lastname@example.org .