[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: your mail

To: tech_(_at_)_openbsd_(_dot_)_org
Subject: Re: your mail
From: Antoine Verheijen <antoine_(_at_)_nihon_(_dot_)_ucs_(_dot_)_ualberta_(_dot_)_ca>
Date: Fri, 21 Jul 2000 00:06:05 -0600 (MDT)

I must apologize for some of the tone in this message. I've been looking for
a "whipping boy" all day and I inappropriately pick Dug (in this message).
I'm sorry, particularly for doing it in a "public" place.

I'll try to behave better.

> 
> Knowing the history is truely immaterial. Bu tthe synopsis of what you're
> saying is: to fix the potential KDC spoofing problem, we chose a solution
> of convenience and, although it can be shown to be inadequate, we're not
> about to change it because it's been like that for a while. By that
> argument, why bother fixing any security problem. The fact it, it IS still
> possible to spoof the KDC without compromising either the KDC or the local
> host. It's not as easy, but it IS possible. However, we don't care! Perhaps
> OpenBSD should drop its claim of makign security its top priority. Or at
> least, Kerberos support should be dropped from the default install. This
> is a security hole which can be eliminated in a backward-compatible fashion
> but you're not interested.
> 

...

-----------------------------------------------------------------------
Antoine Verheijen                  Email: Antoine_(_dot_)_Verheijen_(_at_)_UAlberta_(_dot_)_CA
CNS Network Services               Phone: (403) 492-9312
University of Alberta              Fax:   (403) 492-1729

References:
- Re: your mail
  - From: Antoine Verheijen

Prev by Date: Re: your mail
Next by Date: wargames: >1 GB Boot Partition Support
Previous by thread: Re: your mail
Next by thread: Re: your mail
Index(es):
- Date
- Thread

Visit your host, monkey.org