Date: Mon, 05 Nov 2001 16:54:38 -0700 From: Warner Losh <imp@harmony.village.org> To: Joerg Wunsch <joerg_wunsch@uriah.heep.sax.de> Cc: cvs-committers@FreeBSD.org, cvs-all@FreeBSD.org Subject: Re: cvs commit: src/usr.bin/keyinfo Makefile keyinfo.c keyinfo.pl Message-ID: <200111052354.fA5Nsc718537@harmony.village.org> In-Reply-To: Your message of "Mon, 05 Nov 2001 23:29:25 %2B0100." <20011105232925.C80377@uriah.heep.sax.de> References: <20011105232925.C80377@uriah.heep.sax.de> <200111051831.fA5IVOk74379@freefall.freebsd.org>
next in thread | previous in thread | raw e-mail | index | archive | help
In message <20011105232925.C80377@uriah.heep.sax.de> Joerg Wunsch writes: : As Warner Losh wrote: : : > imp 2001/11/05 10:31:23 PST : > : > Modified files: (Branch: RELENG_4_3) : > usr.bin/keyinfo Makefile : > Added files: (Branch: RELENG_4_3) : > usr.bin/keyinfo keyinfo.c : > Removed files: (Branch: RELENG_4_3) : > usr.bin/keyinfo keyinfo.pl : > Log: : > MFC keyinfo.c to eliminate a setuid perl script in -stable : : Given that S/Key is going to die anyway, i don't think this : was all that much useful. You could as well have resurrected : keyinfo.sh :); when i wrote that Perl script years ago, David : Greenman (IIRC) pointed out to me that leaving the skeykeys : file readable for everyone wouldn't impose much of a security : risk anyway. (OK, just kidding, the shell script would have : broken backwards compatibility for existing 0600 skeykeys : files.) Right now it flat doesn't work on -stable. suidperl can't be used, so we need the setuid .c program. Since I'd already done this for -current, merging it was easy. I know that -current no longer uses this, but -stable still uses skey and we're going to have a few more 4.x releases before it goes away. Warner To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe cvs-all" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?200111052354.fA5Nsc718537>