Here's a question about ypserv.conf:
I've inabled "port" security for the passwd maps on my NIS server.
Basically, this prevents anyone from port > 1024 seeing the passwords -
they are mangled (turned to 'x').
So if I 'ypcat passwd' on any station, I don't see the passwords, but just
'x' in the second field.
However, in the ypserv.conf file, it says that in MSDOS everyone can
access ports < 1024. When one of my clients polls the NIS server, they
come in from a port > 1024 into port 951 on the server (for example). Who
exactly is usings ports < 1024? System daemons and root?
Does this password mangling add any security to the NIS server? Or is it a
no-brainer for hackers?
mk
----------------------------------------------
You can get more with a kind word and a gun
than you can with a kind word alone.
Al Capone
----------------------------------- 368/1424 -
Martin Krzywinski
System Administrator
Center for Integrated Genomics
BC Cancer Agency
600 West 10th Avenue
Vancouver, BC V5Z 4E6
tel: (604) 877-6086
fax: (604) 877-6085
http://www.cigenomics.bc.ca
