Date: Tue, 25 Jun 1996 10:02:37 +0200 (MET DST) From: J Wunsch <j@uriah.heep.sax.de> To: freebsd-hackers@freebsd.org (FreeBSD hackers) Cc: danny@auscert.org.au (Danny Smith) Subject: Re: No comment character in hosts.equiv Message-ID: <199606250802.KAA17967@uriah.heep.sax.de> In-Reply-To: <199606250641.QAA04407@amethyst.auscert.org.au> from Danny Smith at "Jun 25, 96 04:41:10 pm"
next in thread | previous in thread | raw e-mail | index | archive | help
As Danny Smith wrote: > > Wrong. FreeBSD has a comment char. > OK, I verified this on our 2.0.5 test system before mailing. Looks like I > may have been hit by the "checking the previous version" problem. FreeBSD 2.0.5 shipped with commented-out entries in hosts.equiv and the sample .rhosts files that caused DNS lookup timeouts (since names starting with a hash mark were looked up). After realizing this, the comment-character logic was braught in. Anyway, commented-out entries normally don't constitute a security hole (unless a potential intruder can manipulate DNS to get the wrong name as an alias for his host). -- cheers, J"org joerg_wunsch@uriah.heep.sax.de -- http://www.sax.de/~joerg/ -- NIC: JW11-RIPE Never trust an operating system you don't have sources for. ;-)
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?199606250802.KAA17967>