Date: Sun, 21 Jan 2001 00:10:25 -0500 (EST) From: djm@web.us.uu.net (David J. MacKenzie) To: djm@web.us.uu.net, rwatson@FreeBSD.ORG Cc: freebsd-security@FreeBSD.ORG Subject: Re: improved: PAM support for login, rshd, and su Message-ID: <20010121051025.CB06E12686@jenkins.web.us.uu.net>
next in thread | raw e-mail | index | archive | help
> So, at one point recently I sent e-mail to freebsd-arch proposing that we > eliminate the #ifdef for LOGIN_CAP. I asked if anyone was actually not > using the login.conf stuff in their configuration but haven't found any > examples yet. Having two code paths for all sensitive authorization and > authentication code really makes a mess of things, and also means that > login.conf can't be used as a comprehensive source of policy. I agree. login already uses login_cap unconditionally, so I don't see any point in having su and rshd maintain two code paths. To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20010121051025.CB06E12686>