From owner-freebsd-security  Mon Aug 21  7:30:54 2000
Delivered-To: freebsd-security@freebsd.org
Received: from khavrinen.lcs.mit.edu (khavrinen.lcs.mit.edu [18.24.4.193])
	by hub.freebsd.org (Postfix) with ESMTP id 4DB8B37B423
	for <freebsd-security@FreeBSD.ORG>; Mon, 21 Aug 2000 07:30:51 -0700 (PDT)
Received: (from wollman@localhost)
	by khavrinen.lcs.mit.edu (8.9.3/8.9.3) id KAA06409;
	Mon, 21 Aug 2000 10:30:44 -0400 (EDT)
	(envelope-from wollman)
Date: Mon, 21 Aug 2000 10:30:44 -0400 (EDT)
From: Garrett Wollman <wollman@khavrinen.lcs.mit.edu>
Message-Id: <200008211430.KAA06409@khavrinen.lcs.mit.edu>
To: Michael Maxwell <drwho@xnet.com>
Cc: freebsd-security@FreeBSD.ORG
Subject: Re: Log message improvement for rpc.statd
In-Reply-To: <200008191817.NAA09304@drwho.xnet.com>
References: <200008191817.NAA09304@drwho.xnet.com>
Sender: owner-freebsd-security@FreeBSD.ORG
Precedence: bulk
X-Loop: FreeBSD.org

<<On Sat, 19 Aug 2000 13:18:13 -0500 (CDT), Michael Maxwell <drwho@xnet.com> said:

> RPC is, by nature, insecure.  

Not true.  It's just our implementation (copied from Sun) that's
insecure.  There are plenty of secure RPC protocols around --
including some that fit within the Sun ONC framework (such as
RPCSEC_GSS as used in Kerberos 5's admin protocol).

-GAWollman

--
Garrett A. Wollman   | O Siem / We are all family / O Siem / We're all the same
wollman@lcs.mit.edu  | O Siem / The fires of freedom 
Opinions not those of| Dance in the burning flame
MIT, LCS, CRS, or NSA|                     - Susan Aglukark and Chad Irschick


To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-security" in the body of the message