[140] in Info-AFS_Redistribution
Re: AFS security hole (gaping)
daemon@ATHENA.MIT.EDU (Wallace Colyer)
Thu Jun 13 18:02:53 1991
Date: Thu, 13 Jun 91 16:36:07 -0400 (EDT)
From: Wallace Colyer <wally+@andrew.cmu.edu>
To: AFS-Helpline@transarc.com, Info-AFS@transarc.com,
Cc: rick troxel <rick@alw.nih.gov>, john powell <jip@alw.nih.gov>
In-Reply-To: <UcJYj=C0ts0tAGS4k4@alw.nih.gov>
Basically, anyone using any of the transarc remote shell rountines is
leaving themselves open for serious attacks. In reality they are no
safer than the standard rsh routines even without the bahaviour you
showed. I'd rather not give any more details here, but it has been our
experience that you cannot use afs tokens for remote authentication,
unless the machine you remotely authenticate to is a fileserver (or
equally trusted).
We have modified our afs authentication routines to give us by default
kerberos ticket files and use a homebrew kerberized rsh for remote
connections to trusted machines.
-Wallace
