Date: Wed, 29 Nov 1995 15:19:07 -0700 (MST) From: Terry Lambert <terry@lambert.org> To: nate@rocky.sri.MT.net (Nate Williams) Cc: terry@lambert.org, nate@rocky.sri.MT.net, freebsd-current@FreeBSD.org Subject: Re: schg flag on make world in -CURRENT Message-ID: <199511292219.PAA28811@phaeton.artisoft.com> In-Reply-To: <199511292215.PAA21562@rocky.sri.MT.net> from "Nate Williams" at Nov 29, 95 03:15:18 pm
next in thread | previous in thread | raw e-mail | index | archive | help
> > > You can 'su' on insecure lines. You can't directly login as root on > > > insecure lines. > > > > Paraphrased: "You can use a root password on insecure lines. You can't > > directly use a root password on insecure lines." > > Close. > > You can't use the root password on insecure lines w/out at least some > initial form of authentication. Closer. You can't make the root password succeptible to snooping on insecure lines w/out at least some initial form of authentication equally succeptible to snooping (ie: "secure" is a NO-OP if it doesn't prevent root logins). I like the security level bump compromise soloution. It lets people who want the current, useless behaviour have it. Terry Lambert terry@lambert.org --- Any opinions in this posting are my own and not those of my present or previous employers.
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?199511292219.PAA28811>