"Galchin Vasili" <[EMAIL PROTECTED]> writes: > Hello, > > If some GSS security mecahisms store information, like e.g. > credentials, in files, running as root a process can read these files and > then masquerade as others.
Right. The Unix design has been to give "root" the ability to do anything on a system, including reading user's private credentials. There are few technical options that solve this completely, as far as I'm aware. Do you consider this an important problem? If you have suggestions on solving it, I'd be happy to discuss them. /Simon _______________________________________________ Help-gss mailing list [email protected] http://lists.gnu.org/mailman/listinfo/help-gss
