[<prev] [next>] [thread-next>] [day] [month] [year] [list]
Message-ID: <6afa549f0609150432o190f8320p6ab46c8f72dd6009@mail.gmail.com>
Date: Fri, 15 Sep 2006 13:32:49 +0200
From: "マグロ原子" <atoom.tonijn@...il.com>
To: "Paul Sebastian Ziegler" <psz@...erved.de>
Cc: full-disclosure <full-disclosure@...ts.grok.org.uk>
Subject: Re: AFS - The Ultimate Sulution? -- What is the
point?
In-Reply-To: <4509C2FE.8020104@...erved.de>
I don't really see the point... Possible vulnerabilities (if I didn't
horribly misunderstand something):
*The AFS server would still need to be updated to keep it secure.
*If the imaged OS is rootable:
**The AFS clients that load the images could be replaced by phishnets.
**The attacker could pose as the user having access to Kerberos
credentials. (So rm -r / would delete the users "securely kept files")
Or do users only have read-only access to their files?? That doesn't
seem useful.
Nyoro~n
_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/
Powered by blists - more mailing lists