Security issues with the PAM modules for Kerberos?

To: debian-security@lists.debian.org
Cc: bam@debian.org
Subject: Security issues with the PAM modules for Kerberos?
From: Arne Nordmark <arne.nordmark@mech.kth.se>
Date: Thu, 14 Feb 2002 10:11:48 +0100
Message-id: <[🔎] 3C6B7F54.5BB6E065@mech.kth.se>

Hello,

In the description for libpam-heimdal it says: "This module should only
be used for local logins unless you really know what you are doing". On
the other hand it is quite tempting to use it for IMAP servers etc, so
what are the issues? Is it that it is easy to make misstakes in
configuration, or that it is possible to spoof with a fake KDC, or that
the code not is considered well audited, or something else?

Arne

-- 
	Arne Nordmark		Tel: +46 8 - 790 71 92
	KTH/Mekanik		Fax: +46 8 - 723 04 75
	SE-100 44 STOCKHOLM	Internet: arne.nordmark@mech.kth.se
	Sweden

Reply to:

Follow-Ups:
- Re: Security issues with the PAM modules for Kerberos?
  - From: Torbjorn Pettersson <tobbe@strul.nu>
- Re: Security issues with the PAM modules for Kerberos?
  - From: Brian May <bam@debian.org>

Prev by Date: Re: Un-installing inetd on Woody.
Next by Date: Re: Security issues with the PAM modules for Kerberos?
Previous by thread: Re: Un-installing inetd on Woody.
Next by thread: Re: Security issues with the PAM modules for Kerberos?
Index(es):
- Date
- Thread