From owner-freebsd-questions Wed Nov 8 18:52:37 2000 Delivered-To: freebsd-questions@freebsd.org Received: from netsrvr.ami.com.au (netsrvr.ami.com.au [203.55.31.38]) by hub.freebsd.org (Postfix) with ESMTP id B5A7737B479 for ; Wed, 8 Nov 2000 18:52:31 -0800 (PST) Received: from emu.os2.ami.com.au (IDENT:root@c0s17.ami.com.au [203.55.31.82]) by netsrvr.ami.com.au (8.9.3/8.9.3) with ESMTP id KAA00205 for ; Thu, 9 Nov 2000 10:52:28 +0800 Received: from possum.os2.ami.com.au (IDENT:summer@possum.os2.ami.com.au [192.168.1.6]) by emu.os2.ami.com.au (8.10.0/8.10.0) with ESMTP id eA92qOZ25893 for ; Thu, 9 Nov 2000 10:52:26 +0800 Message-Id: <200011090252.eA92qOZ25893@emu.os2.ami.com.au> X-Mailer: exmh version 2.1.1 10/15/1999 To: freebsd-questions@freebsd.org Subject: Re: Multi Server Passwords In-Reply-To: Your message of "Wed, 08 Nov 2000 18:40:54 PST." <20001108184053.H5112@fw.wintelcom.net> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Date: Thu, 09 Nov 2000 10:55:04 +0800 From: John Summerfield Sender: owner-freebsd-questions@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.ORG bright@wintelcom.net said: > NIS is a poor choice for security, afaik it passes passwords via > plaintext. Doesn't matter whether the password is encrypted or not; if a snooper can see it's a password and whose it is, they can use what they have. To be sure, encrypted isn't quite so simple, but it's still not hard. To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message