Bugtraq mailing list archives

Re: Fix for Linux/AIX login hole

From: perry () imsi com (Perry E. Metzger)
Date: Tue, 24 May 1994 09:12:05 -0400


George Boyce says:

Of course, the real answer is to kerberize all access to your machine, but.

..


Unless your kerberos server is also a victim. :-(


Kerberos servers should, as a matter of principle, be running nothing
but kerberos. Any kerberos server that depends on other network
servers to function has been horribly misdesigned. (I have on several
occassions run NTP servers as well on Kerberos servers, but thats an
unusual exception.)

Current thread:

Re: Fix for Linux/AIX login hole Serge J. Goldstein (May 23)
- Re: Fix for Linux/AIX login hole Doug McLaren (May 23)
- <Possible follow-ups>
- Re: Fix for Linux/AIX login hole Doug Siebert (May 23)
  - Re: Fix for Linux/AIX login hole Christopher Klaus (May 23)
- Re: Fix for Linux/AIX login hole H Morrow Long (May 23)
  - Re: Fix for Linux/AIX login hole Perry E. Metzger (May 24)
    - Re: Fix for Linux/AIX login hole George Boyce (May 24)
    - Re: Fix for Linux/AIX login hole Perry E. Metzger (May 24)