Re: Security and NIS - alternatives?

Greg Lewis (glewistrc.adelaide.edu.au)
Thu, 4 Nov 1999 06:35:21 +1030 (CST)

• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
• Next message: Matthew D. Fuller: "Re: Security and NIS - alternatives?"
• Previous message: Greg Lewis: "Re: Security and NIS - alternatives?"
• In reply to: Jeffrey J. Mountin: "Re: Security and NIS - alternatives?"
• Next in thread: Matthew D. Fuller: "Re: Security and NIS - alternatives?"

> NIS doesn't send plain text passwords over the net. It only sends the
> encrypted form over the net. The plain text is encrypted on the client
> and compared against the encrypted form.

I am certainly aware of this, I'd just prefer that the encrypted password
wasn't sent over the wire either, since that in itself is a point of attack
that I've so far avoided by forcing people to use ssh.

> If you want something better than that, have a look at kerberos.

I will, thanks for your suggestion!

-- 
Greg Lewis 				glewistrc.adelaide.edu.au
Computing Officer			+61 8 8303 5083
Teletraffic Research Centre
To Unsubscribe: send mail to majordomoFreeBSD.org
with "unsubscribe freebsd-security" in the body of the message

• Next message: Matthew D. Fuller: "Re: Security and NIS - alternatives?"
• Previous message: Greg Lewis: "Re: Security and NIS - alternatives?"
• In reply to: Jeffrey J. Mountin: "Re: Security and NIS - alternatives?"
• Next in thread: Matthew D. Fuller: "Re: Security and NIS - alternatives?"

This archive was generated by hypermail 2.0b3 on Wed Nov 03 1999 - 14:07:16 CST