Date: Thu, 27 Dec 2007 20:37:27 -0700 From: Chad Perrin <perrin@apotheon.com> To: freebsd-questions@freebsd.org Subject: Re: NIS Linux - Ubuntu Message-ID: <20071228033727.GA89701@demeter.hydra> In-Reply-To: <4463yksxaf.fsf@Lowell-Desk.lan> References: <54129.66383.qm@web54201.mail.re2.yahoo.com> <44fxxxphbh.fsf@be-well.ilk.org> <20071220195027.GB54762@demeter.hydra> <4463yksxaf.fsf@Lowell-Desk.lan>
next in thread | previous in thread | raw e-mail | index | archive | help
On Wed, Dec 26, 2007 at 09:10:00PM -0500, Lowell Gilbert wrote: > Chad Perrin <perrin@apotheon.com> writes: > > > > The behavior with an asterisk instead of an X is pretty worrisome, > > however, and is not strictly Ubuntu's fault. Security of a server should > > not rely on the good will and competence of the client developers. > > I agree with the latter sentence, but not the former. > When using NFS (without Kerberos), it is built into the protocol that > the server trusts the client on the UID/GID. > That is a good reason not to use NFS in an untrusted environment, but > there really isn't anything FreeBSD can do about it. I'm not clear on how that makes it Ubuntu's fault -- which seems to be what you're saying, since you disagreed with the sentence in which I stated it is not strictly Ubuntu's fault. -- CCD CopyWrite Chad Perrin [ http://ccd.apotheon.org ] John Kenneth Galbraith: "If all else fails, immortality can always be assured through spectacular error."
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20071228033727.GA89701>