From owner-freebsd-hackers Thu Jun 29 18:53:19 1995 Return-Path: hackers-owner Received: (from majordom@localhost) by freefall.cdrom.com (8.6.10/8.6.6) id SAA14831 for hackers-outgoing; Thu, 29 Jun 1995 18:53:19 -0700 Received: from orion.stars.sed.monmouth.army.mil ([158.9.11.65]) by freefall.cdrom.com (8.6.10/8.6.6) with ESMTP id SAA14825 for ; Thu, 29 Jun 1995 18:53:13 -0700 Message-Id: <199506300153.SAA14825@freefall.cdrom.com> Received: by orion.stars.sed.monmouth.army.mil (1.37.109.16/16.2) id AA005347236; Thu, 29 Jun 1995 21:53:56 -0400 Subject: Re: PPP password security To: freebsd-hackers@freebsd.org Date: Thu, 29 Jun 1995 21:53:56 -0400 (EDT) From: "William Pechter ILEX Systems" In-Reply-To: <199506211715.TAA20917@uriah.heep.sax.de> from "J Wunsch" at Jun 21, 95 07:15:38 pm Reply-To: pechter@sesd.ilex.com X-Mailer: ELM [version 2.5 PL0a3] Mime-Version: 1.0 Content-Type: text/plain; charset=US-ASCII Content-Transfer-Encoding: 7bit Content-Length: 852 Sender: hackers-owner@freebsd.org Precedence: bulk > It's a long-standing tradition to store remote passwords in plaintext > (/etc/uucp/systems etc.), and i don't see a problem as long as the > files are mode 0600 and owned by a `trusted' user. If you cannot > trust root, forget about Unix security. > > Perhaps all those programs should refuse to work if they detect > insecure files containing the password (like the .rhosts and .netrc > permission checks). > Pyramid did this with rhosts. and .netrc ... also they made vi ignore .exrc files in non-home directories unless set exrc was set in exinit variable... Bill ----------------------------------------------------------------------------- Bill Pechter |Systems Administrator | N2RDI Ilex Systems |170 Patterson Ave | Shrewsbury, New Jersey 07702 908-532-2369 |pechter@sesd.ilex.com | pechter@stars.sed.monmouth.army.mil