From owner-freebsd-bugs  Mon Apr 17 23:53:32 1995
Return-Path: bugs-owner
Received: (from majordom@localhost)
          by freefall.cdrom.com (8.6.10/8.6.6) id XAA17888
          for bugs-outgoing; Mon, 17 Apr 1995 23:53:32 -0700
Received: from relay.philips.nl (relay.philips.nl [130.144.65.1])
          by freefall.cdrom.com (8.6.10/8.6.6) with ESMTP id XAA17870
          ; Mon, 17 Apr 1995 23:53:22 -0700
Received: from muxgw1.ms.philips.nl ([130.144.90.6]) by relay.philips.nl (8.6.9/8.6.9-950414) with SMTP id IAA01310; Tue, 18 Apr 1995 08:52:31 +0200
Received: by muxgw1.ms.philips.nl (5.57/Ultrix2.4-C)
	id AA15408; Tue, 18 Apr 95 08:36:30 +0300
Received: by mmra1.ms.philips.nl (4.1/SMI-4.1)
	id AA16769; Tue, 18 Apr 95 08:50:35 +0200
From: gvrooij@mmra1.ms.philips.nl (Guido van Rooij)
Message-Id: <9504180650.AA16769@mmra1.ms.philips.nl>
Subject: Re: Changed information for PR bin/339
To: wollman@freefall.cdrom.com (Garrett A. Wollman)
Date: Tue, 18 Apr 1995 08:50:33 +0200 (MET DST)
Cc: pst@shockwave.com, wollman@freefall.cdrom.com,
        freebsd-bugs@freefall.cdrom.com
In-Reply-To: <199504131522.IAA17906@freefall.cdrom.com> from "Garrett A. Wollman" at Apr 13, 95 08:22:27 am
X-Mailer: ELM [version 2.4 PL21]
Content-Type: text
Content-Length: 618       
Sender: bugs-owner@FreeBSD.org
Precedence: bulk

> 
> Synopsis: users may enter kerberos password at login prompt
> 
> State-Changed-From-To: open-closed
> State-Changed-By: wollman
> State-Changed-When: Thu Apr 13 08:20:52 PDT 1995
> State-Changed-Why: 
> Paul's suggested patch appears to do the right thing, applied in login.c 1.8.
> 

Me and Wietse talked a bit about this patch and agreed that the current
way login is coded is bad. There are multiple check for a correcty password
hidden in various levels of if's. It might even be possible that someone
just falls through by accident.
A good solution would be to have one subroutine do all this stuff.

-Guido