Re: auth port security

To: debian-user@lists.debian.org
Subject: Re: auth port security
From: Carey Evans <c.evans@clear.net.nz>
Date: 12 Dec 1998 22:31:56 +1300
Message-id: <[🔎] 87iufhvh83.fsf@psyche.evansnet>
In-reply-to: Pere Camps's message of "Wed, 9 Dec 1998 23:37:24 +0000 (GMT)"
References: <[🔎] Pine.LNX.3.96.981209233518.27522A-100000@casal.upc.es>

Pere Camps <pere@casal.upc.es> writes:

> 	Does anybody know if the auth port has any know security
> compromises? A user has asked me to turn it on (I have almost everything
> off) and I'm not sure.

It will release the names of your users to anyone who is able to
connect to it, unless you install a dummy one which claims to know
nothing.

You should probably ask if your user really needs to use IRC.  (This
is the only case I can think of when it's _needed_, and other networks 
than Undernet are usually less strict anyway.)

-- 
	 Carey Evans  http://home.clear.net.nz/pages/c.evans/

"Is there anyone who actually believes that USAicans are so modest or
intellectually honest as to be unable to find someone to sue?" - Cameron Laird

Reply to:

References:
- auth port security
  - From: Pere Camps <pere@casal.upc.es>

Prev by Date: Re: emacs & xemacs
Next by Date: Re: elm email gets through, exmh email doesn't
Previous by thread: auth port security
Next by thread: X server died when I wasn't at machine
Index(es):
- Date
- Thread