Date: Sat, 20 Oct 2001 15:12:27 GMT From: Neil Darlow <neil@darlow.co.uk> To: freebsd-security@freebsd.org Subject: Internal auth defaults Message-ID: <20011020.15122700@ideal.darlow.co.uk>
next in thread | raw e-mail | index | archive | help
Hi, I've noticed that the internal auth service provided by inetd.conf announces the OS as UNKNOWN. In the interests of additional information hiding, wouldn't it be wise to also add the -i switch so that uids are returned instead of names? I'm thinking of the casual user who uncomments the inetd.conf entry without being aware that his username will be sent to anyone who asks via the auth service. Regards, Neil Darlow M.Sc. -- 1024D/531F9048 1999-09-11 Neil Darlow <neil@darlow.co.uk> GPG fingerprint =3D 359D B8FF 6273 6C32 BEAA 43F9 E579 E24A 531F 9048 To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20011020.15122700>