Bugtraq mailing list archives

Re: SSH / X11 auth: needless complexity -> security problems?

From: Casper Dik <Casper.Dik () Sun COM>
Date: Fri, 08 Jun 2001 21:27:57 +0200

The problem isn't the authentication, it's the granularity of the
authorization that the filesystem affords.  NFS leaves authorization
up to the client host (aka ``No File Security'').



NFS provides most any level of security you desire; not many vendors
implement NFS security, though.  NFSv4 requires the implementation
of GSS_API (i.e., Kerberos V based) security in NFS.

Don't complain that NFS is insecure if it's just because you don't
want to invest the time to configure it properly.

Casper

Current thread:

Re: SSH allows deletion of other users files..., (continued)
- - Re: SSH allows deletion of other users files... Jerry Connolly (Jun 05)
  - Re: SSH allows deletion of other users files... Markus Friedl (Jun 05)
  - Re: SSH allows deletion of other users files... aleph1 (Jun 05)
- Re: SSH allows deletion of other users files... David F. Skoll (Jun 04)
  - Re: SSH allows deletion of other users files... sarnold (Jun 05)
    - Re: SSH allows deletion of other users files... Markus Friedl (Jun 04)
    - Re: SSH / X11 auth: needless complexity -> security problems? Peter W (Jun 05)
    - Re: SSH / X11 auth: needless complexity -> security problems? Markus Friedl (Jun 08)
    - Re: SSH / X11 auth: needless complexity -> security problems? Theo de Raadt (Jun 10)
    - Message not available
    - Message not available
    - Re: SSH / X11 auth: needless complexity -> security problems? Dale Southard (Jun 08)
    - Re: SSH / X11 auth: needless complexity -> security problems? Casper Dik (Jun 10)
- nosymfollow Re: SSH allows deletion of other users files... Jan Grant (Jun 08)