Re: eDirectory Trustee and User Space IOCTL() in NWFS

From: Alan Cox (alan@lxorguk.ukuu.org.uk)
Date: Fri Sep 29 2000 - 19:23:37 EST

Next message: Jeff V. Merkey: "Re: eDirectory Trustee and User Space IOCTL() in NWFS"
Previous message: Jeff V. Merkey: "Re: eDirectory Trustee and User Space IOCTL() in NWFS"
In reply to: Jeff V. Merkey: "Re: eDirectory Trustee and User Space IOCTL() in NWFS"
Next in thread: Jeff V. Merkey: "Re: eDirectory Trustee and User Space IOCTL() in NWFS"
Reply: Jeff V. Merkey: "Re: eDirectory Trustee and User Space IOCTL() in NWFS"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

> What you are about to ship is like swiss cheese, and could render any
> Linux server a point of attack that will allow a hacker to get into a
> single server with a replica, then gain access to the entire Network.

If it works as described then its already a swiss cheese. You just need to put
up a fake or compromised box and collect the data. Breaking into Novell boxes
and doing bios level I/O isnt hard.

Mind you, until its open source I'll stick with LDAP and kerberos. For one I
trust folks like Ted more to get it right.

-
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@vger.kernel.org
Please read the FAQ at http://www.tux.org/lkml/

Next message: Jeff V. Merkey: "Re: eDirectory Trustee and User Space IOCTL() in NWFS"
Previous message: Jeff V. Merkey: "Re: eDirectory Trustee and User Space IOCTL() in NWFS"
In reply to: Jeff V. Merkey: "Re: eDirectory Trustee and User Space IOCTL() in NWFS"
Next in thread: Jeff V. Merkey: "Re: eDirectory Trustee and User Space IOCTL() in NWFS"
Reply: Jeff V. Merkey: "Re: eDirectory Trustee and User Space IOCTL() in NWFS"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

This archive was generated by hypermail 2b29 : Sat Sep 30 2000 - 21:00:26 EST