|
Focus on Linux
NIS with local root Jan 26 2003 12:28PM Nicolas Justin (nicolas justin free fr) (1 replies) Re: NIS with local root Jan 29 2003 09:25PM Paulius M. (paulius pit ktu lt) (3 replies) Re: NIS with local root Jan 30 2003 09:31AM Kevin Jackson (kevin jackson genaware com) (4 replies) Re: NIS with local root Jan 30 2003 04:47PM Kevin Jackson (kevin jackson genaware com) (3 replies) Re: NIS with local root Jan 31 2003 04:21PM Brent J. Nordquist (b-nordquist bethel edu) (1 replies) Re: NIS with local root Jan 31 2003 07:24PM Kevin Jackson (kevin jackson genaware com) (3 replies) |
|
|
Privacy Statement |
> but surely in such a situation where NIS and NFS is employed -- you won't be
> giving out root passwords to normal untrusted users anyway?!
I dissagree. Every place I've worked that had NIS and NFS would allow
the developers to have root on their machine for administration purposes.
In my opinion all other admins and developers are untrusted users.
But they never thought through the home directory ramifications.
I always kept a skeleton home directory on my machine and
exported it read only to the other boxes, and had my real
home directory only available from my machine.
A heck of a lot more work to maintain it that way, but that's
the price of security in that kind of environment.
--
Brian Hatch Why are a 'wise man'
Systems and and a 'wise guy'
Security Engineer opposites?
http://www.ifokr.org/bri/
Every message PGP signed
[ reply ]