Bugtraq mailing list archives
Re: SSH / X11 auth: needless complexity -> security problems?
From: Casper Dik <Casper.Dik () Sun COM>
Date: Fri, 08 Jun 2001 21:27:57 +0200
The problem isn't the authentication, it's the granularity of the authorization that the filesystem affords. NFS leaves authorization up to the client host (aka ``No File Security'').
NFS provides most any level of security you desire; not many vendors implement NFS security, though. NFSv4 requires the implementation of GSS_API (i.e., Kerberos V based) security in NFS. Don't complain that NFS is insecure if it's just because you don't want to invest the time to configure it properly. Casper
Current thread:
- Re: SSH allows deletion of other users files..., (continued)
- Re: SSH allows deletion of other users files... Jerry Connolly (Jun 05)
- Re: SSH allows deletion of other users files... Markus Friedl (Jun 05)
- Re: SSH allows deletion of other users files... aleph1 (Jun 05)
- Re: SSH allows deletion of other users files... David F. Skoll (Jun 04)
- Re: SSH allows deletion of other users files... sarnold (Jun 05)
- Re: SSH allows deletion of other users files... Markus Friedl (Jun 04)
- Re: SSH / X11 auth: needless complexity -> security problems? Peter W (Jun 05)
- Re: SSH / X11 auth: needless complexity -> security problems? Markus Friedl (Jun 08)
- Re: SSH / X11 auth: needless complexity -> security problems? Theo de Raadt (Jun 10)
- Message not available
- Message not available
- Re: SSH / X11 auth: needless complexity -> security problems? Dale Southard (Jun 08)
- Re: SSH / X11 auth: needless complexity -> security problems? Casper Dik (Jun 10)
- Re: SSH allows deletion of other users files... sarnold (Jun 05)