Path: utzoo!utgpu!watmath!clyde!att!pacbell!ames!mailrus!cornell!uw-beaver!rice!sun-spots-request From: krempel@pacrat.npac.syr.edu (Henry B.J. Krempel) Newsgroups: comp.sys.sun Subject: Re: security of client workstations Message-ID: <8811231507.AA10446@PacRat.NPAC.syr.edu> Date: 4 Dec 88 04:25:19 GMT Sender: usenet@rice.edu Organization: Rice University, Houston, Texas Lines: 15 Approved: Sun-Spots@rice.edu Original-Date: Wed, 23 Nov 88 10:07:52 -0500 X-Sun-Spots-Digest: Volume 7, Issue 37, message 7 of 12 SunOs 4.0 addresses this issue a bit. It has security features that don't allow root to su to a user and be interpreted as that user on an NFS mount. MIT's Project Athena has an authentication service called Kerberous (sp?) that does a more complete job. I'm not sure whether this system is available yet for the Sun. Both systems insure that the user must type his own password at least once before assuming his identity on the network. Henry B. J. KrempelSyracuse University 250 Machinery Hall Syracuse, N.Y. 13244