Date: Thu, 27 May 2010 21:34:25 +1000 From: Sean <sean@gothic.net.au> To: Dag-Erling =?ISO-8859-1?Q?Sm=F8rgrav?= <des@des.no> Cc: Dmitry Pryanishnikov <lynx.ripe@gmail.com>, freebsd-security@freebsd.org Subject: Re: FreeBSD Security Advisory FreeBSD-SA-10:05.opie Message-ID: <20100527213425.dca8fcf3.sean@gothic.net.au> In-Reply-To: <86d3wh3aie.fsf@ds4.des.no> References: <201005270325.o4R3P7Bj009279@freefall.freebsd.org> <AANLkTikHAZTCgc4R8AsTKFlcWXLXUF_aLGoySmP3kjyt@mail.gmail.com> <86d3wh3aie.fsf@ds4.des.no>
next in thread | previous in thread | raw e-mail | index | archive | help
On Thu, 27 May 2010 12:27:21 +0200 Dag-Erling Smørgrav <des@des.no> wrote: > Dmitry Pryanishnikov <lynx.ripe@gmail.com> writes: > > Wouldn't just commenting out all references to pam_opie* in > > /etc/pam.d/* create a viable workaround? > > With my PAM maintainer hat on: yes. > > I'm surprised secteam didn't bother to ask me. > It would work if the application only used PAM for OPIE support. ftpd links directly to libopie, as well as using PAM. > DES > -- > Dag-Erling Smørgrav - des@des.no > _______________________________________________ > freebsd-security@freebsd.org mailing list > http://lists.freebsd.org/mailman/listinfo/freebsd-security > To unsubscribe, send any mail to > "freebsd-security-unsubscribe@freebsd.org" -- Sean Winn sean@gothic.net.au
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20100527213425.dca8fcf3.sean>