openafs/README.SECURITY

The inetd, rcp, rlogind and rsh directories contain AFS authentication (token)
passing support for their respective utilities. We are not removing these 
utilities as some sites may still be using them, but we *strongly discourage*
their use. These utilities don't encrypt user traffic, and they also don't
encrypt the AFS tokens. This means an attacker can capture the data and recover
a valid authentication token, and use it to perform authenticated operations.

Consider foregoing the rcmds altogether and using ssh. You can get Dug Song's
ssh patch to support AFS here:
http://www.monkey.org/~dugsong/ssh-afs/
but you'll also need to install Kerberos 4 for libraries (which isn't a bad
idea anyhow). The KTH implementation includes the AFS helper library libkafs,
and so is desirable:
ftp://ftp.pdc.kth.se/pub/krb/src/

As a side effect, the insecure, but AFS aware ftpd included in AFS can be 
replaced by the ftpd included in the above-mentioned Kerberos package, as it
has RFC2228 security extensions. 

In any case, carefully consider the security implications before deploying 
these utilities.

To enable building of the insecure code included with OpenAFS, run
configure with the --enable-insecure switch.
For people who don't know any better 2000-11-04 22:20:51 +00:00			`The inetd, rcp, rlogind and rsh directories contain AFS authentication (token)`
			`passing support for their respective utilities. We are not removing these`
			`utilities as some sites may still be using them, but we strongly discourage`
			`their use. These utilities don't encrypt user traffic, and they also don't`
			`encrypt the AFS tokens. This means an attacker can capture the data and recover`
			`a valid authentication token, and use it to perform authenticated operations.`

			`Consider foregoing the rcmds altogether and using ssh. You can get Dug Song's`
			`ssh patch to support AFS here:`
			`http://www.monkey.org/~dugsong/ssh-afs/`
			`but you'll also need to install Kerberos 4 for libraries (which isn't a bad`
			`idea anyhow). The KTH implementation includes the AFS helper library libkafs,`
			`and so is desirable:`
			`ftp://ftp.pdc.kth.se/pub/krb/src/`

			`As a side effect, the insecure, but AFS aware ftpd included in AFS can be`
			`replaced by the ftpd included in the above-mentioned Kerberos package, as it`
			`has RFC2228 security extensions.`

			`In any case, carefully consider the security implications before deploying`
			`these utilities.`

introduce-autoconf-for-openafs-20010628 replace existing build system with autoconf faceplate ==================== This delta was composed from multiple commits as part of the CVS->Git migration. The checkin message with each commit was inconsistent. The following are the additional commit messages. ==================== so we can fix the file modes ==================== commit withj correct file modes ==================== stuff which got left behind ==================== more stuff which was missed ==================== get this right so build completes ==================== also make these correct (no obj reference) ==================== so autoconf dependancy chain need not change ==================== set correct variable for obsolete buildng ==================== so we can more easily use autoconf'd CC var 2001-06-28 07:44:19 +01:00			`To enable building of the insecure code included with OpenAFS, run`
			`configure with the --enable-insecure switch.`