|
List Info Thread: security hole in GSS when running as root?
[1]
|
||||||||||||
|
about | contact Other archives ( Real Estate discussion Medical topics ) |
||||||||||||
security hole in GSS when running as root? |
|
List Info Thread: security hole in GSS when running as root?
[1]
|
||||||||||||
|
about | contact Other archives ( Real Estate discussion Medical topics ) |
||||||||||||
gmail.com> writes:
> Hello,
>
> If some GSS security mecahisms store information,
like e.g.
> credentials, in files, running as root a process can
read these files and
> then masquerade as others.
Right. The Unix design has been to give "root"
the ability to do
anything on a system, including reading user's private
credentials.
There are few technical options that solve this completely,
as far as
I'm aware.
Do you consider this an important problem? If you have
suggestions on
solving it, I'd be happy to discuss them.
/Simon
_______________________________________________
Help-gss mailing list
Help-gss