Title: problem with NIS
|
This
is actually a problem with NFS. I used to be under the
assumption it was a NIS problem too.
One
solution is to restrict the NFS exports to machines you can trust, and then
restrict root on them. This is of course not the best solution, but it
would give you a little more security.
Your
other option would be to look into modifications to NFS. I believe there are a
few available, I know one of my professors was involved in such a patch, but I'm
not sure of the current status.
Easy, don't allow
them root access.
-----Original
Message-----
From: Avrahami
David [mailto:[EMAIL PROTECTED]]
Sent: 29 July 2002 15:24
To: 'redhat-list'
Subject: problem with NIS
Hi,
The problem is when the user login as root in his
machine he get access to any other NIS user home directory he wants to
by "su - <anynisusername>" without typing any
password.
I know
that it's a big hole in security caused by NIS but I don't know how to fix
it.
Any
idea?
TIA
David
Avrahami
Email:
[EMAIL PROTECTED]
________________________________________________________________________
This
email has been scanned for all viruses by the MessageLabs SkyScan
service.
For more information on a proactive anti-virus service working
around the
clock, around the globe, visit
http://www.messagelabs.com
________________________________________________________________________
This
E-Mail is sent in confidence for the addressee only. Unauthorised recipients
must preserve this confidentiality and should please advise the sender
immediately by telephone (+44 (0)870 241 6492) and return the original E-Mail
to the sender without taking a copy. Cyprotex has taken all reasonable
precautions to ensure that no viruses are transmitted from Cyprotex to any
third party. Cyprotex accepts no responsibility for any loss or damage
resulting directly or indirectly from the use of this E-Mail or the
contents.
|
