From owner-freebsd-security  Mon Jul  3 22:11:27 2000
Delivered-To: freebsd-security@freebsd.org
Received: from fw.wintelcom.net (ns1.wintelcom.net [209.1.153.20])
	by hub.freebsd.org (Postfix) with ESMTP id 6CA6037BB0D
	for <freebsd-security@FreeBSD.ORG>; Mon,  3 Jul 2000 22:11:19 -0700 (PDT)
	(envelope-from bright@fw.wintelcom.net)
Received: (from bright@localhost)
	by fw.wintelcom.net (8.10.0/8.10.0) id e645BFO14206;
	Mon, 3 Jul 2000 22:11:15 -0700 (PDT)
Date: Mon, 3 Jul 2000 22:11:15 -0700
From: Alfred Perlstein <bright@wintelcom.net>
To: Brian Dean <bsd@bsdhome.com>
Cc: freebsd-security@FreeBSD.ORG
Subject: Re: rshd patch (security) - please comment (fwd)
Message-ID: <20000703221115.A25571@fw.wintelcom.net>
References: <Pine.BSF.4.21.0007031821410.21917-100000@vger.bsdhome.com>
Mime-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Content-Disposition: inline
User-Agent: Mutt/1.2i
In-Reply-To: <Pine.BSF.4.21.0007031821410.21917-100000@vger.bsdhome.com>; from bsd@bsdhome.com on Mon, Jul 03, 2000 at 06:26:07PM -0400
Sender: owner-freebsd-security@FreeBSD.ORG
Precedence: bulk
X-Loop: FreeBSD.org

* Brian Dean <bsd@bsdhome.com> [000703 15:28] wrote:
> Hi,
> 
> Someone brought to my attention that this patch should get wider
> review, -security was suggested and seems appropriate.  My apologies
> for not sending it here in the first place.

[snip denying rsh allow for password-less acounts]

I agree, there's nothing wrong with bolting down security further,
and I'd like to see this happen.

-Alfred


To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-security" in the body of the message