Robert Banz wrote: > > So, how was this "fixed" in 1.4.4, other than just turning setuid off by > default? > > -rob
1.4.4 turns setuid off for all cells by default whereas it was on by default previously. That is all that it does. "Fixing" correctly means providing security to anonymous connections which cannot be done without significant changes to AFS. One potential approach would be to permit host keys to be used to authenticate connections when user tokens are not available. One problem with this approach is that unauthenticated users would now appear to be authenticated to the file server. Therefore, the ACLs for system:authuser would apply to those connections instead of system:anyuser. rxgk when it is finished (anyone have resources they want to provide?) will provide for protection of all connections. We simply do not have that capability with the existing security class. Jeffrey Altman Secure Endpoints Inc.
smime.p7s
Description: S/MIME Cryptographic Signature
