Firewalls: Re: System Security

Firewalls
(October 1993)

Indexed By Thread: [Previous] [Next]

Subject:	Re: System Security
From:	Bob Dew <rdew @ alw . nih . gov>
Date:	Wed, 27 Oct 1993 11:40:56 -0400 (EDT)
To:	Firewalls @ greatcircle . com, richard @ wizard . ucs . sfu . ca (Richard Chycoski)
Cc:	pmetzger @ lehman . com
In-reply-to:	<9310270608 . AA03779 @ wizard . ucs . sfu . ca>
References:	<9310270608 . AA03779 @ wizard . ucs . sfu . ca>

Excerpts from Firewalls: 26-Oct-93 Re: System Security Richard
Chycoski @
 wizard .
  (3341)

> If you think that Kerberos is secure on a multiuser machine, even without
> root tampering, you're misinformed.


As I mentioned, the authenticating host can be remote.  This is the same
host that runs the cache manager.  The cache manager can be locked in
vault and stripped of user accounts and of all network access (except
for authenticated rpc requests), if you like.  

By the way, are you suggesting that a host can't protect its core dumps
or kmem from non-root access?  Regardless of where the cache manager
physically resides, I stand by the statement that the authenticating
host is as secure as its root password.

-Bob

References:

Re: System Security
From: richard @ wizard . ucs . sfu . ca (Richard Chycoski)

Indexed By Date	Previous:	Re: System Security From: "Perry E. Metzger" <pmetzger @ lehman . com>
Indexed By Date	Next:	Re: System Security From: Bob Dew <rdew @ alw . nih . gov>
Indexed By Thread	Previous:	Re: System Security From: "Perry E. Metzger" <pmetzger @ lehman . com>
Indexed By Thread	Next:	Re: System Security From: Bob Dew <rdew @ alw . nih . gov>