(Illustration by Gaich Muramatsu)
<braam_at_cs.cmu.edu> ,in message <199803311210.HAA00505_at_carissimi.coda.cs.cmu.edu >, wrote: > > 1) Security -- how can we secure the portmapper? Clearly security is an > > issue -- we need to know that the returned port information is correct. > > However, the portmapper might be mapping the authentication service; > > similarly, the portmapper might be a more general function for many > > possible daemons, in which case how does it authenticate? NTP uses shared secrets. SSL uses certificate authorities. Maintaining a single CA certificate to verify server certificates is a little easier than copying all the keys around. -- Bob Forsman thoth_at_gainesville.fl.us http://www.gainesville.fl.us/~thoth/Received on 1998-03-31 09:49:46