[OpenAFS] Encryption in OpenAFS
Neulinger, Nathan
nneul@umr.edu
Mon, 25 Feb 2002 11:07:54 -0600
Right, but what good does encrypting the cache do if the windows user =
could just copy in a "turn off cache encryption" config. Or replace afsd =
to copy all data elsewhere, or install a sniffer, or whatever.
My point is that worrying about the cache being encrypted in your =
environment is like worrying about your car doors being locked when you =
don't have any window glass.=20
-- Nathan
------------------------------------------------------------
Nathan Neulinger EMail: nneul@umr.edu
University of Missouri - Rolla Phone: (573) 341-4841
Computing Services Fax: (573) 341-4216
> -----Original Message-----
> From: KELEMEN Peter [mailto:fuji@elte.hu]=20
> Sent: Monday, February 25, 2002 3:44 AM
> To: openafs-info@openafs.org
> Subject: Re: [OpenAFS] Encryption in OpenAFS
>=20
>=20
> * Nathan Neulinger (nneul@umr.edu) [20020221 11:08]:
>=20
> > If you are dual booting to windows w/ untrusted users during
> > the day, you have a LOT worse potential security problems than
> > someone looking over the contents of the cache.
>=20
> Admitted, but "looking over tha contents of the cache" is what we
> care about.
>=20
> Peter
>=20
> --=20
> .+'''+. .+'''+. .+'''+. .+'''+. =20
> .+''
> Kelemen P=E9ter / \ / \ / =
fuji@elte.hu
> .+' `+...+' `+...+' `+...+' `+...+'
> _______________________________________________
> OpenAFS-info mailing list
> OpenAFS-info@openafs.org
> https://lists.openafs.org/mailman/listinfo/openafs-info
>=20