[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Re: Secure Finger Daemon

On Sun, Jan 06, 2002 at 11:45:28PM +0100, eim wrote:
> my Finger Daemon conclusion...
> First, Thanks for all the answers to my question.
> Well, so it really seems it's better to avoid using
> any finger daemon, security has always priority.
> Anyway I thought the finger daemon would be a nice
> feature for the .plan files, userinfo and mail info
> for the users of my box.
> Maybe running fingerd in a chrooted jail as not-root
> user would be a secure-like solution, got to think about it.

I'm no security expert, but...

Wouldn't running fingerd in a chroot jail prevent it from accessing
users' .plan files?

> Thanks again for all the replays,
> have a nice time...
>  -Ivo

Karl E. Jørgensen
"One disk to rule them all, One disk to find them. One disk to bring
 them all and in the darkness grind them. In the Land of Redmond
 where the shadows lie." -- The Silicon Valley Tarot
          Henrique Holschuh

Attachment: pgpC3OjiSpCST.pgp
Description: PGP signature

Reply to: