|
Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com |
Subject: Another facet of Kerberos insecurity
From: Chris Evans (chris
ferret.lmh.ox.ac.uk)Date: Thu May 18 2000 - 14:08:28 CDT
- Next message: Simon Wilkinson: "Re: Another facet of Kerberos insecurity"
- Previous message: Chris Evans: "Clarification/further info on Kerberos issues (fwd)"
- Next in thread: Simon Wilkinson: "Re: Another facet of Kerberos insecurity"
- Reply: Simon Wilkinson: "Re: Another facet of Kerberos insecurity"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
Hi,
Before I forget, here's an observation made by Matthew Kirkwood.
RedHat6.2 has "/usr/kerberos/bin" first in the $PATH. In this directory,
there exist "ftp", "telnet", "rlogin", etc. Does this mean that a
malicious remote site (or compromised big site) could use insecurities in
the Kerberos protocol to compromise clients connecting with these
"kerberized" binaries?
Cheers
Chris
- Next message: Simon Wilkinson: "Re: Another facet of Kerberos insecurity"
- Previous message: Chris Evans: "Clarification/further info on Kerberos issues (fwd)"
- Next in thread: Simon Wilkinson: "Re: Another facet of Kerberos insecurity"
- Reply: Simon Wilkinson: "Re: Another facet of Kerberos insecurity"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]