[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: Yudit text-editor
> APOP instead of POP and SMB with encrypted passwords.
Clear-text passwords are only a part of the problem. These two
services have many vulnerabilities, buffer overflows, etc., and it
is not clever to allow them. Would you really rely on the quality
of a Microsft protocol like SMB?
> NFS should definitely be
> enabled only for trusted hosts.
BTW: I forgot to mention, but avoiding trusted hosts improves your
security. Many hacks were based on trusted hosts, such as the statd
hole.
> X is fine when tunneled over an ssh connection.
Yes (unless you don't use the latest version). But slow.
--
Eli Marmor