Date: Mon, 16 Dec 1996 15:45:12 -0700 (MST) From: Terry Lambert <terry@lambert.org> To: phk@critter.tfs.com (Poul-Henning Kamp) Cc: wpaul@skynet.ctr.columbia.edu, current@freebsd.org Subject: Re: Plan for integrating Secure RPC -- comments wanted Message-ID: <199612162245.PAA02231@phaeton.artisoft.com> In-Reply-To: <11680.850740486@critter.tfs.com> from "Poul-Henning Kamp" at Dec 16, 96 01:48:06 pm
next in thread | previous in thread | raw e-mail | index | archive | help
> read it, and here are my comments: > > For the DES pollution: > > Put DES in the kernel. > > This could be as an LKM, which would be the easiest, or as > a proper kernel-source file, which would be slightly harder > to manage distributions-wise. > > Result: > * You avoid your planned hack. > * We could do away with the two versions if libcrypt we have > now, and collapse them into one. > * Which makes the dual versions of /bin/ed, /sbin/init ... > unneeded. > * Our secure dist would consist of only the LKM file. > > Drawback: > * Minor optional kernel bloat. If this becomes the "official" approach, then may I suggest /dev/des (ala SunOS) instead of a system call? This would: * Avoid system call space pollution * Allow use of DES hardware if you had it and had a driver Terry Lambert terry@lambert.org --- Any opinions in this posting are my own and not those of my present or previous employers.
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?199612162245.PAA02231>