From owner-freebsd-questions@FreeBSD.ORG Fri Dec 28 03:37:31 2007 Return-Path: Delivered-To: freebsd-questions@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 9193A16A419 for ; Fri, 28 Dec 2007 03:37:31 +0000 (UTC) (envelope-from perrin@apotheon.com) Received: from outbound-mail-30.bluehost.com (outbound-mail-30.bluehost.com [69.89.17.212]) by mx1.freebsd.org (Postfix) with SMTP id 793E013C46B for ; Fri, 28 Dec 2007 03:37:31 +0000 (UTC) (envelope-from perrin@apotheon.com) Received: (qmail 2887 invoked by uid 0); 28 Dec 2007 03:37:31 -0000 Received: from unknown (HELO box183.bluehost.com) (69.89.25.183) by mailproxy2.bluehost.com with SMTP; 28 Dec 2007 03:37:31 -0000 Received: from c-24-9-123-251.hsd1.co.comcast.net ([24.9.123.251] helo=demeter.hydra) by box183.bluehost.com with esmtps (TLSv1:AES256-SHA:256) (Exim 4.68) (envelope-from ) id 1J862L-0006Qm-KH for freebsd-questions@freebsd.org; Thu, 27 Dec 2007 20:37:29 -0700 Received: from demeter.hydra (localhost [127.0.0.1]) by demeter.hydra (8.13.6/8.13.6) with ESMTP id lBS3bSL0089752 for ; Thu, 27 Dec 2007 20:37:28 -0700 (MST) (envelope-from perrin@apotheon.com) Received: (from ren@localhost) by demeter.hydra (8.13.6/8.13.6/Submit) id lBS3bRks089751 for freebsd-questions@freebsd.org; Thu, 27 Dec 2007 20:37:27 -0700 (MST) (envelope-from perrin@apotheon.com) X-Authentication-Warning: demeter.hydra: ren set sender to perrin@apotheon.com using -f Date: Thu, 27 Dec 2007 20:37:27 -0700 From: Chad Perrin To: freebsd-questions@freebsd.org Message-ID: <20071228033727.GA89701@demeter.hydra> Mail-Followup-To: freebsd-questions@freebsd.org References: <54129.66383.qm@web54201.mail.re2.yahoo.com> <44fxxxphbh.fsf@be-well.ilk.org> <20071220195027.GB54762@demeter.hydra> <4463yksxaf.fsf@Lowell-Desk.lan> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline In-Reply-To: <4463yksxaf.fsf@Lowell-Desk.lan> User-Agent: Mutt/1.4.2.3i X-Identified-User: {737:box183.bluehost.com:apotheon:apotheon.net} {sentby:bopbeforesmtp 24.9.123.251 authed with apotheon.com} Subject: Re: NIS Linux - Ubuntu X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 28 Dec 2007 03:37:31 -0000 On Wed, Dec 26, 2007 at 09:10:00PM -0500, Lowell Gilbert wrote: > Chad Perrin writes: > > > > The behavior with an asterisk instead of an X is pretty worrisome, > > however, and is not strictly Ubuntu's fault. Security of a server should > > not rely on the good will and competence of the client developers. > > I agree with the latter sentence, but not the former. > When using NFS (without Kerberos), it is built into the protocol that > the server trusts the client on the UID/GID. > That is a good reason not to use NFS in an untrusted environment, but > there really isn't anything FreeBSD can do about it. I'm not clear on how that makes it Ubuntu's fault -- which seems to be what you're saying, since you disagreed with the sentence in which I stated it is not strictly Ubuntu's fault. -- CCD CopyWrite Chad Perrin [ http://ccd.apotheon.org ] John Kenneth Galbraith: "If all else fails, immortality can always be assured through spectacular error."