[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: [seul-edu] Alternatives to NIS
> MAJOR security hole - anyone with any UNIX machine that has root
> access to that machine can become any NIS user without the need for a
> password. This is one of the many reasons that I hate NIS.
Could you be more specific? Anyone with any UNIX machine that has root
access to that machine can become _any_ user, period.
Being able to become any user on the machine you've already cracked is
normal. Being able to access any of that user's files on the NFS server is
also normal - but that's an NFS problem, not NIS.