From owner-freebsd-security Tue Sep 12 9:17:57 2000 Delivered-To: freebsd-security@freebsd.org Received: from theshell.com (arsenic.theshell.com [63.236.138.5]) by hub.freebsd.org (Postfix) with SMTP id 282F537B42C for ; Tue, 12 Sep 2000 09:17:55 -0700 (PDT) Received: (qmail 889 invoked from network); 12 Sep 2000 16:17:57 -0000 Received: from arsenic.theshell.com (HELO tequila) (root@63.236.138.5) by arsenic.theshell.com with SMTP; 12 Sep 2000 16:17:57 -0000 From: "Peter Avalos" To: "David Wolfskill" Cc: "freebsd-security@FreeBSD. ORG" Subject: RE: ypserv giving out encrypted passwords Date: Tue, 12 Sep 2000 11:20:22 -0500 Message-ID: MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit X-Priority: 3 (Normal) X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook IMO, Build 9.0.2416 (9.0.2911.0) X-MimeOLE: Produced By Microsoft MimeOLE V5.50.4133.2400 In-Reply-To: <200009121503.IAA31586@pau-amma.whistle.com> Importance: Normal Sender: owner-freebsd-security@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org |I suspect that the "encrypted password only in master.passwd.by*" only |works if it's aFreeBSD box as master. (A master constructs the maps; a |slave merely repeats what it's told.) Why? That just doesn't make sense to me. The master has to give the whole map to the slave, and the slave server should still be acting as a server. It shouldn't be dealing out the encrypted passwords to non-privileged ports. It looks like the manpage is wrong (it looks at tcp and udp), but it also looks like there's a bug when ypserv is acting as a slave server. Regards, Peter Avalos TheShell.com To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message