/[gentoo]/xml/htdocs/proj/en/glep/glep-0012.html
Gentoo

Diff of /xml/htdocs/proj/en/glep/glep-0012.html

Parent Directory Parent Directory | Revision Log Revision Log | View Patch Patch

Revision 1.1 Revision 1.2
37</tr> 37</tr>
38<tr class="field"><th class="field-name">Last-Modified:</th><td class="field-body"><a class="reference" href="http://www.gentoo.org/cgi-bin/viewcvs.cgi/xml/htdocs/proj/en/glep/glep-0012.txt?cvsroot=gentoo">2003/08/11 14:32:44</a></td> 38<tr class="field"><th class="field-name">Last-Modified:</th><td class="field-body"><a class="reference" href="http://www.gentoo.org/cgi-bin/viewcvs.cgi/xml/htdocs/proj/en/glep/glep-0012.txt?cvsroot=gentoo">2003/08/11 14:32:44</a></td>
39</tr> 39</tr>
40<tr class="field"><th class="field-name">Author:</th><td class="field-body">Tavis Ormandy &lt;taviso&#32;&#97;t&#32;gentoo.org&gt;</td> 40<tr class="field"><th class="field-name">Author:</th><td class="field-body">Tavis Ormandy &lt;taviso&#32;&#97;t&#32;gentoo.org&gt;</td>
41</tr> 41</tr>
42<tr class="field"><th class="field-name">Status:</th><td class="field-body">Draft</td> 42<tr class="field"><th class="field-name">Status:</th><td class="field-body">Rejected</td>
43</tr> 43</tr>
44<tr class="field"><th class="field-name">Type:</th><td class="field-body">Standards Track</td> 44<tr class="field"><th class="field-name">Type:</th><td class="field-body">Standards Track</td>
45</tr> 45</tr>
46<tr class="field"><th class="field-name">Created:</th><td class="field-body">10-Aug-2003</td> 46<tr class="field"><th class="field-name">Created:</th><td class="field-body">10-Aug-2003</td>
47</tr> 47</tr>
51</table> 51</table>
52<hr /> 52<hr />
53<div class="contents topic" id="contents"> 53<div class="contents topic" id="contents">
54<p class="topic-title"><a name="contents">Contents</a></p> 54<p class="topic-title"><a name="contents">Contents</a></p>
55<ul class="simple"> 55<ul class="simple">
56<li><a class="reference" href="#reason-for-rejection" id="id21" name="id21">Reason for rejection</a></li>
56<li><a class="reference" href="#abstract" id="id21" name="id21">Abstract</a></li> 57<li><a class="reference" href="#abstract" id="id22" name="id22">Abstract</a></li>
57<li><a class="reference" href="#motivation" id="id22" name="id22">Motivation</a></li> 58<li><a class="reference" href="#motivation" id="id23" name="id23">Motivation</a></li>
58<li><a class="reference" href="#rationale" id="id23" name="id23">Rationale</a></li> 59<li><a class="reference" href="#rationale" id="id24" name="id24">Rationale</a></li>
59<li><a class="reference" href="#implementation-and-security" id="id24" name="id24">Implementation and Security</a></li> 60<li><a class="reference" href="#implementation-and-security" id="id25" name="id25">Implementation and Security</a></li>
60<li><a class="reference" href="#example-query" id="id25" name="id25">Example Query</a></li> 61<li><a class="reference" href="#example-query" id="id26" name="id26">Example Query</a></li>
61<li><a class="reference" href="#references" id="id26" name="id26">References</a></li> 62<li><a class="reference" href="#references" id="id27" name="id27">References</a></li>
62<li><a class="reference" href="#copyright" id="id27" name="id27">Copyright</a></li> 63<li><a class="reference" href="#copyright" id="id28" name="id28">Copyright</a></li>
63</ul> 64</ul>
64</div> 65</div>
66<div class="section" id="reason-for-rejection">
67<h1><a class="toc-backref" href="#id21" name="reason-for-rejection">Reason for rejection</a></h1>
68<p>Information about Gentoo development is already significantly fragmented.
69Although this GLEP has its merits, the fact that it is a separate source
70of information, rather than simply another conduit to existing sources
71of information, poses more problems than it solves. Were this GLEP to
72be resubmitted/modified so that finger was nothing more than an interface
73into existing sources of information, it would probably be accepted.</p>
74</div>
65<div class="section" id="abstract"> 75<div class="section" id="abstract">
66<h1><a class="toc-backref" href="#id21" name="abstract">Abstract</a></h1> 76<h1><a class="toc-backref" href="#id22" name="abstract">Abstract</a></h1>
67<p>The finger protocol is documented in rfc742 <a class="footnote-reference" href="#id11" id="id1" name="id1">[1]</a> and rfc1196 <a class="footnote-reference" href="#id12" id="id2" name="id2">[2]</a>, a simple 77<p>The finger protocol is documented in rfc742 <a class="footnote-reference" href="#id11" id="id1" name="id1">[1]</a> and rfc1196 <a class="footnote-reference" href="#id12" id="id2" name="id2">[2]</a>, a simple
68protocol that returns a human readable report about a particular user 78protocol that returns a human readable report about a particular user
69of the system. Typically, the information returned will be details such as 79of the system. Typically, the information returned will be details such as
70full name, location, etc. These details are entirely optional and are obtained 80full name, location, etc. These details are entirely optional and are obtained
71from the system passwd file, which of course can be edited or removed with the 81from the system passwd file, which of course can be edited or removed with the
82<p>The finger protocol is mature, secure and widely used in the UNIX community. 92<p>The finger protocol is mature, secure and widely used in the UNIX community.
83There are clients available for all major operating systems, and web-based 93There are clients available for all major operating systems, and web-based
84clients for those that dont.</p> 94clients for those that dont.</p>
85</div> 95</div>
86<div class="section" id="motivation"> 96<div class="section" id="motivation">
87<h1><a class="toc-backref" href="#id22" name="motivation">Motivation</a></h1> 97<h1><a class="toc-backref" href="#id23" name="motivation">Motivation</a></h1>
88<p>Gentoo developers are already aware of the importance of User Relations <a class="footnote-reference" href="#id19" id="id5" name="id5">[9]</a> .</p> 98<p>Gentoo developers are already aware of the importance of User Relations <a class="footnote-reference" href="#id19" id="id5" name="id5">[9]</a> .</p>
89<p>It is essential to keep the community up to date with current goals, status 99<p>It is essential to keep the community up to date with current goals, status
90updates, and information from the development team. Currently it is suggested 100updates, and information from the development team. Currently it is suggested
91users track mailing lists, monitor the Gentoo bugzilla, developer IRC 101users track mailing lists, monitor the Gentoo bugzilla, developer IRC
92channels and cvs commits.</p> 102channels and cvs commits.</p>
116standard procedure <a class="footnote-reference" href="#id16" id="id8" name="id8">[6]</a> is to inform vendors before releasing the information 126standard procedure <a class="footnote-reference" href="#id16" id="id8" name="id8">[6]</a> is to inform vendors before releasing the information
117to full disclosure security discussion lists. Making the relevant maintainer's 127to full disclosure security discussion lists. Making the relevant maintainer's
118key easily obtainable will allow reporters to encrypt their reports.</p> 128key easily obtainable will allow reporters to encrypt their reports.</p>
119</div> 129</div>
120<div class="section" id="rationale"> 130<div class="section" id="rationale">
121<h1><a class="toc-backref" href="#id23" name="rationale">Rationale</a></h1> 131<h1><a class="toc-backref" href="#id24" name="rationale">Rationale</a></h1>
122<p>Providing a finger daemon will allow users to instantly access information on 132<p>Providing a finger daemon will allow users to instantly access information on
123developers, and all details of that developers current projects that they decide 133developers, and all details of that developers current projects that they decide
124to share.</p> 134to share.</p>
125<p>GPG keys for all developers will be instantly availble, and the output of the 135<p>GPG keys for all developers will be instantly availble, and the output of the
126finger <a class="reference" href="mailto:devname&#64;gentoo.org">devname&#64;gentoo.org</a> command can be piped into gpg --import to instantly 136finger <a class="reference" href="mailto:devname&#64;gentoo.org">devname&#64;gentoo.org</a> command can be piped into gpg --import to instantly
143FreeBSD developers. 153FreeBSD developers.
144$ finger nakai&#64;freebsd.org 154$ finger nakai&#64;freebsd.org
145</pre> 155</pre>
146</div> 156</div>
147<div class="section" id="implementation-and-security"> 157<div class="section" id="implementation-and-security">
148<h1><a class="toc-backref" href="#id24" name="implementation-and-security">Implementation and Security</a></h1> 158<h1><a class="toc-backref" href="#id25" name="implementation-and-security">Implementation and Security</a></h1>
149<p>Some admins are concerned about the security of running a finger daemon on their 159<p>Some admins are concerned about the security of running a finger daemon on their
150machines, the class of security issues involved with the finger protocol are 160machines, the class of security issues involved with the finger protocol are
151commonly referred to as &quot;information leaks&quot; <a class="footnote-reference" href="#id17" id="id9" name="id9">[7]</a>.</p> 161commonly referred to as &quot;information leaks&quot; <a class="footnote-reference" href="#id17" id="id9" name="id9">[7]</a>.</p>
152<p>This means an attacker may be able to use a finger daemon to identify valid 162<p>This means an attacker may be able to use a finger daemon to identify valid
153accounts on their target, which they would then try to obtain access to.</p> 163accounts on their target, which they would then try to obtain access to.</p>
161the projects to maintain more technical details or status updates not suitable 171the projects to maintain more technical details or status updates not suitable
162for their project webpages.</p> 172for their project webpages.</p>
163<p>Adding data to a plan is a lot simpler than updating webpages.</p> 173<p>Adding data to a plan is a lot simpler than updating webpages.</p>
164</div> 174</div>
165<div class="section" id="example-query"> 175<div class="section" id="example-query">
166<h1><a class="toc-backref" href="#id25" name="example-query">Example Query</a></h1> 176<h1><a class="toc-backref" href="#id26" name="example-query">Example Query</a></h1>
167<p>Should a user want information about the author, this might be the output of 177<p>Should a user want information about the author, this might be the output of
168a finger query:</p> 178a finger query:</p>
169<pre class="literal-block"> 179<pre class="literal-block">
170$ finger taviso&#64;gentoo.org 180$ finger taviso&#64;gentoo.org
171Login: taviso Name: Tavis Ormandy 181Login: taviso Name: Tavis Ormandy
195(...) 205(...)
196-----END PGP PUBLIC KEY BLOCK----- 206-----END PGP PUBLIC KEY BLOCK-----
197</pre> 207</pre>
198</div> 208</div>
199<div class="section" id="references"> 209<div class="section" id="references">
200<h1><a class="toc-backref" href="#id26" name="references">References</a></h1> 210<h1><a class="toc-backref" href="#id27" name="references">References</a></h1>
201<table class="footnote" frame="void" id="id11" rules="none"> 211<table class="footnote" frame="void" id="id11" rules="none">
202<colgroup><col class="label" /><col /></colgroup> 212<colgroup><col class="label" /><col /></colgroup>
203<tbody valign="top"> 213<tbody valign="top">
204<tr><td class="label"><a class="fn-backref" href="#id1" name="id11">[1]</a></td><td><a class="reference" href="http://www.ietf.org/rfc/rfc0742.txt">http://www.ietf.org/rfc/rfc0742.txt</a></td></tr> 214<tr><td class="label"><a class="fn-backref" href="#id1" name="id11">[1]</a></td><td><a class="reference" href="http://www.ietf.org/rfc/rfc0742.txt">http://www.ietf.org/rfc/rfc0742.txt</a></td></tr>
205</tbody> 215</tbody>
258<tr><td class="label"><a class="fn-backref" href="#id6" name="id20">[10]</a></td><td><a class="reference" href="http://www.gentoo.org/news/en/gwn/20030407-newsletter.xml">http://www.gentoo.org/news/en/gwn/20030407-newsletter.xml</a></td></tr> 268<tr><td class="label"><a class="fn-backref" href="#id6" name="id20">[10]</a></td><td><a class="reference" href="http://www.gentoo.org/news/en/gwn/20030407-newsletter.xml">http://www.gentoo.org/news/en/gwn/20030407-newsletter.xml</a></td></tr>
259</tbody> 269</tbody>
260</table> 270</table>
261</div> 271</div>
262<div class="section" id="copyright"> 272<div class="section" id="copyright">
263<h1><a class="toc-backref" href="#id27" name="copyright">Copyright</a></h1> 273<h1><a class="toc-backref" href="#id28" name="copyright">Copyright</a></h1>
264<p>This document is released under the Open Publications License.</p> 274<p>This document is released under the Open Publications License.</p>
265</div> 275</div>
266</div> 276</div>
267 277
268<hr class="footer"/> 278<hr class="footer"/>
269<div class="footer"> 279<div class="footer">
270<a class="reference" href="glep-0012.txt">View document source</a>. 280<a class="reference" href="glep-0012.txt">View document source</a>.
271Generated on: 2003-08-11 14:32 UTC. 281Generated on: 2004-01-31 21:54 UTC.
272Generated by <a class="reference" href="http://docutils.sourceforge.net/">Docutils</a> from <a class="reference" href="http://docutils.sourceforge.net/rst.html">reStructuredText</a> source. 282Generated by <a class="reference" href="http://docutils.sourceforge.net/">Docutils</a> from <a class="reference" href="http://docutils.sourceforge.net/rst.html">reStructuredText</a> source.
273</div> 283</div>
274</body> 284</body>
275</html> 285</html>
276 286

Legend:
Removed from v.1.1  
changed lines
  Added in v.1.2

  ViewVC Help
Powered by ViewVC 1.1.20