Date: Thu, 26 Oct 1995 11:55:34 +0100 From: Poul-Henning Kamp <phk@critter.tfs.com> To: gwk@cray.com Cc: davidg@Root.COM, dab@berserkly.cray.com, hartmans@mit.edu, security@freebsd.org Subject: Re: telnetd fix Message-ID: <1038.814704934@critter.tfs.com> In-Reply-To: Your message of "Thu, 26 Oct 1995 11:40:08 %2B0100." <199510261040.LAA16603@racer.dkrz.de>
next in thread | previous in thread | raw e-mail | index | archive | help
> > X-Authentication-Warning: critter.tfs.com: Host localhost didn't use HELO p rotocol > > cc: dab@berserkly.cray.com (David A. Borman), hartmans@mit.edu, > > security@freebsd.org > > Date: Wed, 25 Oct 1995 10:03:07 +0100 > > From: Poul-Henning Kamp <phk@critter.tfs.com> > > Sender: owner-security@freebsd.org > > Precedence: bulk > > > > > At the moment, I'm seriously considering adding a switch to shut off t he > > > feature in FreeBSD's telnetd and making it the default in inetd.conf. > > > > YES! > > > > -- > > Poul-Henning Kamp | phk@FreeBSD.ORG FreeBSD Core-team. > > NO! > > I'd rather like to see a statically linked login, which would plug the > hole without any side-effects. Well, we rely on login being able to find one of two different libcrypt to handle the DES versus MD5 encryption... So, nice idea, bad idea... -- Poul-Henning Kamp | phk@FreeBSD.ORG FreeBSD Core-team. http://www.freebsd.org/~phk | phk@login.dknet.dk Private mailbox. whois: [PHK] | phk@ref.tfs.com TRW Financial Systems, Inc. Future will arrive by its own means, progress not so.
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?1038.814704934>