Re: securityhole /proc/sys/kernel/domainname

Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
Next message: Arthur D. Jerijian: "1.3.67 refuses to boot on my system"
Previous message: Alan Cox: "Re: SMP broken between 1.3.64 and 1.3.66"

Alan Cox (alan@cymru.net)
Wed, 21 Feb 1996 13:28:31 +0000 (GMT)

> this file should not be world readable. As I understand the Yellow Pages the
> domainname is a kind of password that allows NIS access.

Its a 30 second job to break NIS without knowing the domainname. Security
through obscurity is wrong. Use a firewall if you muse use NIS.

Alan