[Top][All Lists]
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: Authentication without clear password on the network
From: |
Greg A. Woods |
Subject: |
Re: Authentication without clear password on the network |
Date: |
Mon, 5 Jul 2004 17:40:35 -0400 (EDT) |
[ On Monday, July 5, 2004 at 12:03:57 (+0200), Yves Martin wrote: ]
> Subject: Authentication without clear password on the network
>
> I'm currently using a CVS server with PAM authentication. So that my
> windows users simply use their domain user/password to authenticate
> with pserver client mode thanks to the SMB PAM module.
Why not use SSH? It would be much more secure.
> [ Additionnaly, users are anonymized to a single real 'cvs' user to
> avoid users creation on Linux ]
Don't do that. The security model used by Unix-like systems (GNU/Linux
obviously included) requires that every human user have a unique system
identity.
--
Greg A. Woods
+1 416 218-0098 VE3TCP RoboHack <address@hidden>
Planix, Inc. <address@hidden> Secrets of the Weird <address@hidden>