From owner-freebsd-security  Fri Mar  2  2: 4:20 2001
Delivered-To: freebsd-security@freebsd.org
Received: from epsilon.lucida.ca (epsilon.lucida.ca [209.47.215.67])
	by hub.freebsd.org (Postfix) with SMTP id 6411A37B71E
	for <freebsd-security@freebsd.org>; Fri,  2 Mar 2001 02:04:17 -0800 (PST)
	(envelope-from matt@LUCIDA.CA)
Received: (qmail 71126 invoked by uid 1000); 2 Mar 2001 08:17:35 -0000
Received: from localhost (sendmail-bs@127.0.0.1)
  by localhost with SMTP; 2 Mar 2001 08:17:35 -0000
Date: Fri, 2 Mar 2001 03:17:34 -0500 (EST)
From: Matt Heckaman <matt@LUCIDA.CA>
To: mudman <mudman@R181204.resnet.ucsb.edu>
Cc: <freebsd-security@freebsd.org>
Subject: Re: /etc/pwd.db
In-Reply-To: <Pine.BSF.4.30.0103020002060.6709-100000@R181204.resnet.ucsb.edu>
Message-ID: <Pine.BSF.4.33.0103020316130.71111-100000@epsilon.lucida.ca>
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII
X-Spam-Rating: localhost 1.6.2 0/1000/N
Sender: owner-freebsd-security@FreeBSD.ORG
Precedence: bulk
X-Loop: FreeBSD.org

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

On Fri, 2 Mar 2001, mudman wrote:
...
: So.... what do you guys think?

Better yet: pwd.db doesn't even contain any passwords! It's the functional
equiv. of /etc/passwd. spwd.db contains the real passwords and is mode
0600 root:wheel. :)

No worries, other than the annoying DoS attacks.

Matt

* Matt Heckaman   - mailto:matt@lucida.ca     http://www.lucida.ca/pgp *
* GPG fingerprint - 53CA 8320 C8F6 32ED 9DDF  036E 3171 C093 4AD3 1364 *

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.0.4 (FreeBSD)
Comment: http://www.lucida.ca/pgp

iD8DBQE6n1cfMXHAk0rTE2QRAq49AJ9Izjy+WfbWhj7VglsJJ1QM34YjqQCgx4uz
n4nSy2dcPLYWZPJ/QRium4w=
=YD2M
-----END PGP SIGNATURE-----



To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-security" in the body of the message