Path: utzoo!attcan!uunet!lll-winken!ames!mailrus!b-tech!zeeff
From: zeeff@b-tech.ann-arbor.mi.us (Jon Zeeff)
Newsgroups: news.sysadmin
Subject: Re: Site impersonation (was: Is uunet a security hole?)
Keywords: uucp logins security
Message-ID: <5048@b-tech.ann-arbor.mi.us>
Date: 9 Jan 89 03:07:55 GMT
References: <10420@rpp386.Dallas.TX.US> <44465@beno.seismo.CSS.GOV> <11687@netsys.COM> <44477@beno.seismo.CSS.GOV> <514@ssbn.WLK.COM>
Reply-To: zeeff@b-tech.ann-arbor.mi.us (Jon Zeeff)
Distribution: na
Organization: Branch Technology Ann Arbor, MI
Lines: 20

>In article <44477@beno.seismo.CSS.GOV> rick@seismo.CSS.GOV (Rick Adams) writes:
>>
>>I don't consider it "safe" when any site that also has an entry
>>in that sites Systems file can impersonate me.
>>

In case other postings wern't clear, the HDB VALIDATE option makes it
possible to require any site claiming to be xxx to use login yyy.  This
eliminates any impersonation problem (except for sites which share a login).







-- 
  Jon Zeeff			zeeff@b-tech.ann-arbor.mi.us
  Support ISO 8859/1		zeeff%b-tech.uucp@umix.cc.umich.edu
  Ann Arbor, MI			umix!b-tech!zeeff