On Wed, 14 Apr 1999, tuvia beker wrote:
> Sorry. The solution is rather simple, and indeed documented:
>
> # Host : Map : Security : Passwd_mangle
> * : * : port : yes
>
> in ypserv.conf solves this problem. It mangles the passwords for
> unauthorized users based on the accessing port number.
and why do you think this solves the problem? one can always connect an
extra machine to your network, or run sniffers, etc, etc, etc.
i'd think that only solutions that replace ALL mechanisms that transfer
passwords over the network, with mechanisms that use some challenge-based
or public key based protocols, would give you some level of security
(e.g. check out on kerberos, for instance).
guy
