Unix- TCP/IP Security (9)

• finger - display information about local or remote users

  • user name, home directory, login shell, last received and read mail, time last logged in
  • allows identify inactive accounts
  • consider disabling to improve security

• NIS - Network Information Service

  • not design as secure system
  • NIS+ is completely rewritten (very complex)
  • NIS maps: hosts, passwd, group, ethers, netmasks, protocols, netgroups, services
  • normal users should not have access to ‘ypcat’:can use ‘ypcat’ to list all usernames, hosts

Previous slide

Next slide

Back to first slide

View graphic version