Path: utzoo!attcan!uunet!ginosko!gem.mps.ohio-state.edu!rpi!uwm.edu!mailrus!cornell!uw-beaver!rice!sun-spots-request
From: mullen@mpm.itd.nrl.navy.mil (Preston Mullen)
Newsgroups: comp.sys.sun
Subject: security of secure NFS
Keywords: Software
Message-ID: <1596@brazos.Rice.edu>
Date: 15 Sep 89 14:56:55 GMT
Sender: root@rice.edu
Organization: Sun-Spots
Lines: 23
Approved: Sun-Spots@rice.edu
X-Sun-Spots-Digest: Volume 8, Issue 129, message 5 of 16

Have horrible holes or other problems been found in secure NFS?  Is it
robust enough to be worth the trouble?

I have been testing secure NFS and "C2" mode for several months, fixing up
little problems, working around inadequate documentation, finding that
some patches from Sun don't work under "C2" mode, etc.  I'd like to know
whether this has really been worth while, since we are contemplating more
widespread use of these features.  I _feel_ more secure, but I'd like to
know if this is illusion or reality.

I'm interested in both theoretical problems and implementation bugs.

Thanks.

	Preston Mullen
	Code 5534
	Information Technology Division
	Naval Research Laboratory
	Washington DC 20375-5000

P.S.  If there is something truly horrible that you don't want to
reveal to the net, you can reply to root@itd.nrl.navy.mil instead
of the From: address.