Date: Sat, 19 Jan 2002 09:14:20 -0500 (EST) From: Robert Watson <rwatson@FreeBSD.org> To: "Andrey A. Chernov" <ache@nagual.pp.ru> Cc: Kris Kennaway <kris@obsecurity.org>, cvs-committers@FreeBSD.org, cvs-all@FreeBSD.org Subject: Re: cvs commit: src/lib/libpam/modules/pam_opie pam_opie.c Message-ID: <Pine.NEB.3.96L.1020119091012.32726F-100000@fledge.watson.org> In-Reply-To: <20020119140308.GA9574@nagual.pp.ru>
next in thread | previous in thread | raw e-mail | index | archive | help
No one debates the technical points here. They're asking you to get some basic advanced review for modifications to the critical system authentication code before you commit the changes. In many cases, the reviewers are the people who wrote and integrated this code; while there are clearly problems, as it's als oclearly a work in progress. This is an engineering point, and it's an issue of basic respect for the other developers on the project. Pausing for a day or two before committing is not too much to ask; the reviewers are ready and waiting. Robert N M Watson FreeBSD Core Team, TrustedBSD Project robert@fledge.watson.org NAI Labs, Safeport Network Services On Sat, 19 Jan 2002, Andrey A. Chernov wrote: > On Sat, Jan 19, 2002 at 16:48:10 +0300, Andrey A. Chernov wrote: > > > nobody comes with re-implementation, it is removed because cause problems. > > Problems are: > > 1) User confusion. > > Example: Imagine that you have insecure host and want to enter 'su'. You > can configure it to use OPIE. And afterwards not only you will see its > prompt, but all other users, not OPIE-enabled, will see fake promts too, > constantly asking questions to admin. > > 2) Automatic tasks protocol confusion. > > Example: Imagine that you have script which enters FTP, confirming > user/password, in the send/expect form. If you ever enable OPIE for _one_ > ftp user in your system, the script stops to work due to unknown FTP > response. > > 3) False sense that OPIE is alive. > > Example: Imagine that filesystem error remove some OPIE-critical file. And > very-very long time users will try to enter the system answering on fake > prompts instead of reporting its admin immediately. > > All of this so obvious so I wonder what ever discussion can happens here. > > > -- > Andrey A. Chernov > http://ache.pp.ru/ > To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe cvs-all" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?Pine.NEB.3.96L.1020119091012.32726F-100000>