Re: nis : how to avoid user1 becoming user2 using local root ?
From: Frederic Medery (dist-list_at_LEXUM.UMontreal.CA)
Date: 03/30/04
- Previous message: Jeremy Miller: "Re: Rewrite Rules, SSL, and .htaccess"
- Maybe in reply to: Frédéric Médery: "nis : how to avoid user1 becoming user2 using local root ?"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: Tue, 30 Mar 2004 09:00:12 -0500 To: Mailing List Linux- Security <focus-linux@securityfocus.com>
first thanks for all you great imput !!!
How can ldap help me ? We want to migrate from nis to ldap /kerberos
this year.
Thanks again !
F
Deep Thought wrote:
> Hello,
>
>Le Fri, Mar 26, 2004 at 04:58:06PM -0500, Frédéric Médery dixit:
>FM> our situation :
>FM> All linux servers, all nfs share use the root_squash option.
>FM> We're using NIS
>FM> All developpers can become root on their local machines.
>FM> The prob : if user1 do a `su -` on their station. And then, `su user2`
>FM> they can become user2.
>FM> For me it's a huge problem (windows don't have this prob, local admin
>FM> are very different from domain/server admin) is there a way to avoid
>FM> this prob ?
>
> Yes : use LDAP
>
>FM> Thanks !
>
> You're welcome
>
>
>
- Previous message: Jeremy Miller: "Re: Rewrite Rules, SSL, and .htaccess"
- Maybe in reply to: Frédéric Médery: "nis : how to avoid user1 becoming user2 using local root ?"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
|
