Re: [netatalk-admins] Information on other authentications

Subject: Re: [netatalk-admins] Information on other authentications
From: Michael Han (mikehan@best.com)
Date: Thu Apr 22 1999 - 02:08:28 EDT

• Next message: John Barry: "[netatalk-admins] another question"
• Previous message: Alex Yu: "RE: [netatalk-admins] Information on other authentications"
• In reply to: Jim Zajkowski: "Re: [netatalk-admins] Information on other authentications"
• Next in thread: David Winkel: "Re: [netatalk-admins] Information on other authentications"
• Reply: Michael Han: "Re: [netatalk-admins] Information on other authentications"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Previously...
>On Tue, 20 Apr 1999, Michael Han wrote:
>
>} And root can't casually be grabbing user passwords either.
>
>So? root can just "su mikehan" and *blam* he's mikehan. Doesn't need a
>password.

Right, but in a lot of (admittedly ill-advised) cases, if root knows
mikehan@best.com's password, *blam* he's also mikehan@worst.com,
mikehan@so-so.com. Not to mention, *blam* he's authentic ATM
card-holder mikehan. It's not a good idea to set oneself up for this
password cascade, but most do.

Meanwhile, I'm off to register some domain names ;-)

-- 
mikehan@best.com
No one is interested in my underpants
 - The collected wisdom of Bart Simpson

• Next message: John Barry: "[netatalk-admins] another question"
• Previous message: Alex Yu: "RE: [netatalk-admins] Information on other authentications"
• In reply to: Jim Zajkowski: "Re: [netatalk-admins] Information on other authentications"
• Next in thread: David Winkel: "Re: [netatalk-admins] Information on other authentications"
• Reply: Michael Han: "Re: [netatalk-admins] Information on other authentications"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

This archive was generated by hypermail 2b28 : Sat Dec 18 1999 - 16:16:38 EST