Re: nis & shadow

To: debian-user@lists.debian.org
Subject: Re: nis & shadow
From: miquels@cistron.nl (Miquel van Smoorenburg)
Date: 20 Feb 1998 10:09:27 +0100
Message-id: <[🔎] 6cjh87$ksg$1@defiant.cistron.nl>
References: <[🔎] Pine.A32.3.96.980220011404.39601D-100000@caesar.power.elte.hu> <[🔎] 34ECD640.20EEDB45@bdsinc.com>

In article <[🔎] 34ECD640.20EEDB45@bdsinc.com>,
Jens B. Jorgensen <jjorgens@bdsinc.com> wrote:
>This is true. However note how you said "if the request for the map comes
>from a non-root user". How do you supposed the NIS server determines
>that you're "not a root user"? I'll tell you: ident.

Nope. Priviliged ports.

>I can whip up an
>ident server on my NT box in two minutes that'll tell you I'm any user
>I want.

Nope. Your NT server hopefully has no access - only trusted Unix hosts,
through /etc/ypserv.securenets and/or /etc/ypserv.conf

>This is not security.

Only if you have set it up so that it allows access to ypserv from machines
you do not trust.

Mike.
-- 
 Miquel van Smoorenburg |  The dyslexic, agnostic, insomniac lay in his bed
    miquels@cistron.nl  |  awake all night wondering if there is a doG


--
TO UNSUBSCRIBE FROM THIS MAILING LIST: e-mail the word "unsubscribe" to
debian-user-request@lists.debian.org . 
Trouble?  e-mail to templin@bucknell.edu .

Reply to:

References:
- Re: nis & shadow
  - From: Gergely Madarasz <gorgo@caesar.elte.hu>
- Re: nis & shadow
  - From: "Jens B. Jorgensen" <jjorgens@bdsinc.com>

Prev by Date: Monitor not working with S3 XServer
Next by Date: Re: Kermit: Where is it???
Previous by thread: Re: nis & shadow
Next by thread: Re: nis & shadow
Index(es):
- Date
- Thread