Re: nis & shadow

To: "Jens B. Jorgensen" <jjorgens@bdsinc.com>
Cc: Debian Users <debian-user@lists.debian.org>
Subject: Re: nis & shadow
From: Gergely Madarasz <gorgo@caesar.elte.hu>
Date: Fri, 20 Feb 1998 01:59:50 +0100 (MET)
Message-id: <[🔎] Pine.A32.3.96.980220015742.39601E-100000@caesar.power.elte.hu>
In-reply-to: <[🔎] 34ECD640.20EEDB45@bdsinc.com>

On Thu, 19 Feb 1998, Jens B. Jorgensen wrote:

> This is true. However note how you said "if the request for the map comes from a
> non-root user". How do you supposed the NIS server determines that you're "not a
> root user"? I'll tell you: ident. I can whip up an ident server on my NT box in two
> minutes that'll tell you I'm any user I want. This is not security.

Wrong. It determines that you're no root user by port. If the request
comes from a port lower than 1024 then it is root. And don't give nis
access to hosts which can be booted into an unsafe OS like NT.

--
Madarasz Gergely           gorgo@caesar.elte.hu         gorgo@linux.rulez.org
      It's practically impossible to look at a penguin and feel angry.
          Egy pingvinre gyakorlatilag lehetetlen haragosan nezni.
              HuLUG: http://www.cab.u-szeged.hu/local/linux/


--
TO UNSUBSCRIBE FROM THIS MAILING LIST: e-mail the word "unsubscribe" to
debian-user-request@lists.debian.org . 
Trouble?  e-mail to templin@bucknell.edu .

Reply to:

Follow-Ups:
- Re: nis & shadow
  - From: "Jens B. Jorgensen" <jjorgens@bdsinc.com>

References:
- Re: nis & shadow
  - From: "Jens B. Jorgensen" <jjorgens@bdsinc.com>

Prev by Date: Re: X Windows scroll bars
Next by Date: faster telnet while ftp'ing?
Previous by thread: Re: nis & shadow
Next by thread: Re: nis & shadow
Index(es):
- Date
- Thread