Re: nis : how to avoid user1 becoming user2 using local root ?

From: James Lick (jlick_at_drivel.com)
Date: 04/03/04

Next message: Frank Burkhardt: "Re: nis : how to avoid user1 becoming user2 using local root ?"

Previous message: Arno van Amersfoort: "Re: iptables firewall script for debian-woody, 2.4.24"
In reply to: Mike Hogsett: "Re: nis : how to avoid user1 becoming user2 using local root ?"
Next in thread: Frank Burkhardt: "Re: nis : how to avoid user1 becoming user2 using local root ?"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Date: Sat, 03 Apr 2004 12:56:48 +0800
To: Mike Hogsett <hogsett@csl.sri.com>

Mike Hogsett wrote:

>
>If person-1 is the only one on host-a (e.g. if there is a one to one
>mapping between the nfs client and the user) you can perform all_squashing
>and anonuid and anongid mapping.
>
>

In this case it is also critical to ensure that only person-1 can login
on host-a. Otherwise, if person-2 wanted to read person-1's files, he
would just have to login to host-a and he'd be all set. If you go to a
one-person-per-computer system then you'd probably want to just not use
a network user database on those machines.

-- 
James Lick -- 黎建溥 -- jlick@jameslick.com -- http://jameslick.com/

Next message: Frank Burkhardt: "Re: nis : how to avoid user1 becoming user2 using local root ?"

Previous message: Arno van Amersfoort: "Re: iptables firewall script for debian-woody, 2.4.24"
In reply to: Mike Hogsett: "Re: nis : how to avoid user1 becoming user2 using local root ?"
Next in thread: Frank Burkhardt: "Re: nis : how to avoid user1 becoming user2 using local root ?"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]