[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [seul-edu] Alternatives to NIS

To: seul-edu@seul.org
Subject: Re: [seul-edu] Alternatives to NIS
From: David Woodhouse <dwmw2@infradead.org>
Date: Mon, 23 Oct 2000 17:17:11 +0100
Delivery-Date: Mon, 23 Oct 2000 12:18:26 -0400
In-Reply-To: <3D71CCC526F1D311A72600902773EC21209E80@cascabella.rtp.bops.com>
References: <3D71CCC526F1D311A72600902773EC21209E80@cascabella.rtp.bops.com>
Reply-To: seul-edu@seul.org
Sender: owner-seul-edu@seul.org


hedemark@bops.com said:
>  MAJOR security hole - anyone with any UNIX machine that has root
> access to that machine can become any NIS user without the need for a
> password.  This is one of the many reasons that I hate NIS.

Could you be more specific? Anyone with any UNIX machine that has root 
access to that machine can become _any_ user, period. 

Being able to become any user on the machine you've already cracked is 
normal. Being able to access any of that user's files on the NFS server is 
also normal - but that's an NFS problem, not NIS.


--
dwmw2

Follow-Ups:
- Re: [seul-edu] Alternatives to NIS
  - From: Harry McGregor <micros@azstarnet.com>

References:
- RE: [seul-edu] Alternatives to NIS
  - From: Chris Hedemark <hedemark@bops.com>

Prev by Date: RE: [seul-edu] Alternatives to NIS
Next by Date: Re: [seul-edu] Alternatives to NIS
Prev by thread: RE: [seul-edu] Alternatives to NIS
Next by thread: Re: [seul-edu] Alternatives to NIS
Index(es):
- Date
- Thread