Date: Wed, 11 Nov 1998 14:05:17 -0800 From: "Jordan K. Hubbard" <jkh@zippy.cdrom.com> To: John Polstra <jdp@polstra.com> Cc: Peter Wemm <peter@netplex.com.au>, cvs-all@FreeBSD.ORG, cvs-committers@FreeBSD.ORG, John Polstra <jdp@FreeBSD.ORG> Subject: Re: cvs commit: src/usr.bin/login Makefile login.c Message-ID: <12368.910821917@zippy.cdrom.com> In-Reply-To: Your message of "Wed, 11 Nov 1998 08:06:05 PST." <XFMail.981111080605.jdp@polstra.com>
next in thread | previous in thread | raw e-mail | index | archive | help
> recompiling a single application. Just stick it in the right place > and add it to your pam.conf file. I think you'll like it. I know I > do. Since you were doing all this for a client, I'm sure you also looked at all the security issues and points of vulnerability before adding PAM support - could you perhaps say a few words about this? I only ask this specific pointed question because I have it on good authority that the Red Hat folks didn't do this initially and suffered a large number of security incidents traced to PAM in Red Hat 4.1 until they finally got things sorted out. I don't know if it was a problem of their implementation or design (I suspect the former), but it does at least raise the reasonable question of security for us. - Jordan To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe cvs-all" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?12368.910821917>