[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: Yudit text-editor



> APOP instead of POP and SMB with encrypted passwords.

Clear-text passwords are only a part of the problem. These two
services have many vulnerabilities, buffer overflows, etc., and it
is not clever to allow them. Would you really rely on the quality
of a Microsft protocol like SMB?

>                                                       NFS should definitely be
> enabled only for trusted hosts.

BTW: I forgot to mention, but avoiding trusted hosts improves your
security. Many hacks were based on trusted hosts, such as the statd
hole.

>                                 X is fine when tunneled over an ssh connection.

Yes (unless you don't use the latest version). But slow.

-- 
Eli Marmor