FreeBSD Mail Archives

Skip site navigation (1)Skip section navigation (2)

Site Navigation

Date:      Fri, 26 Apr 1996 14:33:22 -0700 (PDT)
From:      Joerg Wunsch <joerg>
To:        CVS-committers, cvs-all, cvs-lib
Subject:   cvs commit:  src/lib/libskey skeylogin.c
Message-ID:  <199604262133.OAA05910@freefall.freebsd.org>

next in thread | raw e-mail | index | archive | help

joerg       96/04/26 14:33:21

  Modified:    lib/libskey  skeylogin.c
  Log:
  /etc/skeykeys was basically suffering from the same vulnerability
  as any non-shadowed /etc/passwd.  Ironically, all programs using S/Key
  have already been setuid root except keyinfo(1).
  
  This modification creates /etc/skeykeys with mode 0600 to prevent it
  from being examined by ordinary users.
  
  Revision  Changes    Path
  1.7       +3 -1      src/lib/libskey/skeylogin.c

Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?199604262133.OAA05910>

Header And Logo

Peripheral Links

Site Navigation

Header And Logo

Peripheral Links

Search

Site Navigation