Home page logo
/

bugtraq logo Bugtraq mailing list archives

Re: SSH / X11 auth: needless complexity -> security problems?
From: Casper Dik <Casper.Dik () Sun COM>
Date: Fri, 08 Jun 2001 21:27:57 +0200


The problem isn't the authentication, it's the granularity of the
authorization that the filesystem affords.  NFS leaves authorization
up to the client host (aka ``No File Security'').


NFS provides most any level of security you desire; not many vendors
implement NFS security, though.  NFSv4 requires the implementation
of GSS_API (i.e., Kerberos V based) security in NFS.

Don't complain that NFS is insecure if it's just because you don't
want to invest the time to configure it properly.

Casper


  By Date           By Thread  

Current thread:
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]