Coda File System

Re: Portmapper

From: <thoth_at_purplefrog.com>
Date: Tue, 31 Mar 1998 09:46:20 -0500
<braam_at_cs.cmu.edu> ,in message <199803311210.HAA00505_at_carissimi.coda.cs.cmu.edu
	>, wrote: 

>  > 1) Security -- how can we secure the portmapper?  Clearly security is an
>  > issue -- we need to know that the returned port information is correct.
>  > However, the portmapper might be mapping the authentication service;
>  > similarly, the portmapper might be a more general function for many
>  > possible daemons, in which case how does it authenticate?

  NTP uses shared secrets.  SSL uses certificate authorities.  Maintaining a
single CA certificate to verify server certificates is a little easier than
copying all the keys around.

-- 
Bob Forsman                                   thoth_at_gainesville.fl.us
           http://www.gainesville.fl.us/~thoth/
Received on 1998-03-31 09:49:46