From owner-cvs-all Wed Nov 11 14:04:55 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id OAA08702 for cvs-all-outgoing; Wed, 11 Nov 1998 14:04:55 -0800 (PST) (envelope-from owner-cvs-all@FreeBSD.ORG) Received: from zippy.cdrom.com (zippy.cdrom.com [204.216.27.228]) by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id OAA08697; Wed, 11 Nov 1998 14:04:52 -0800 (PST) (envelope-from jkh@zippy.cdrom.com) Received: from zippy.cdrom.com (jkh@localhost.cdrom.com [127.0.0.1]) by zippy.cdrom.com (8.9.1/8.9.1) with ESMTP id OAA12372; Wed, 11 Nov 1998 14:05:18 -0800 (PST) (envelope-from jkh@zippy.cdrom.com) To: John Polstra cc: Peter Wemm , cvs-all@FreeBSD.ORG, cvs-committers@FreeBSD.ORG, John Polstra Subject: Re: cvs commit: src/usr.bin/login Makefile login.c In-reply-to: Your message of "Wed, 11 Nov 1998 08:06:05 PST." Date: Wed, 11 Nov 1998 14:05:17 -0800 Message-ID: <12368.910821917@zippy.cdrom.com> From: "Jordan K. Hubbard" Sender: owner-cvs-all@FreeBSD.ORG Precedence: bulk > recompiling a single application. Just stick it in the right place > and add it to your pam.conf file. I think you'll like it. I know I > do. Since you were doing all this for a client, I'm sure you also looked at all the security issues and points of vulnerability before adding PAM support - could you perhaps say a few words about this? I only ask this specific pointed question because I have it on good authority that the Red Hat folks didn't do this initially and suffered a large number of security incidents traced to PAM in Red Hat 4.1 until they finally got things sorted out. I don't know if it was a problem of their implementation or design (I suspect the former), but it does at least raise the reasonable question of security for us. - Jordan To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe cvs-all" in the body of the message