Re: netatalk security vs. ftp, ssh

Subject: Re: netatalk security vs. ftp, ssh
From: andrew morgan (morgan@orst.edu)
Date: Sat Jul 29 2000 - 00:19:45 EDT

• Next message: Russell Harmon: "Re: pre-asun2.1.4-39"
• Previous message: Harry Zink/Netatalk List: "Re: netatalk security vs. ftp, ssh - encrypted passwords"
• In reply to: Tom Fitzgerald: "Re: netatalk security vs. ftp, ssh"
• Next in thread: Tom Fitzgerald: "Re: netatalk security vs. ftp, ssh"
• Reply: andrew morgan: "Re: netatalk security vs. ftp, ssh"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On Fri, 28 Jul 2000, Tom Fitzgerald wrote:

> 3) To use encrypted authentication with clients older than MacOS 9, the
> user passwords must be stored in cleartext on the server. This isn't
> actually as much of a problem as one might think, since anyone who can
> break in far enough to get the passwords could also get the passwords
> by other means even if they were encrypted on disk.

I have to disagree with this. I have DHX encrypted logins working with
my mac running OS 8.6. This is using PAM and a regular /etc/passwd file
on the server. Maybe this is only true for randnum encryption?

        Andy

• Next message: Russell Harmon: "Re: pre-asun2.1.4-39"
• Previous message: Harry Zink/Netatalk List: "Re: netatalk security vs. ftp, ssh - encrypted passwords"
• In reply to: Tom Fitzgerald: "Re: netatalk security vs. ftp, ssh"
• Next in thread: Tom Fitzgerald: "Re: netatalk security vs. ftp, ssh"
• Reply: andrew morgan: "Re: netatalk security vs. ftp, ssh"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

This archive was generated by hypermail 2b28 : Wed Jan 17 2001 - 14:31:40 EST