Full Disclosure: NIS Security Hole / Full Access by NIS Client Root

    Date: 05/15/07 (Java Web)    Keywords: security

    Several years ago I noticed a big issue with NIS security at Sun, which I promptly reported hoping for a patch. Today I found out it is still there. Hopefully a full disclosure will help solve it. In typical NFS-NIS setup, users on NIS client machines login to their NIS accounts (like Windows users login [...]

    Source: http://blog.taragana.com/index.php/archive/full-disclosure-nis-security-hole-full-access-by-nis-client-root/

« 3 Minute Guide To... || Ghost DNS Lookup Puzzle on... »
Search  •  Site Map  •  Set as Homepage  •  Add to Favourites  • 
antivirus | apache | asp | blogging | browser | bugtracking | cms | crm | css | database | ebay | ecommerce | google | hosting | html | java | jsp | linux | microsoft | mysql | offshore | offshoring | oscommerce | php | postgresql | programming | rss | security | seo | shopping | software | spam | spyware | sql | technology | templates | tracker | virus | web | xml | yahoo | home