From owner-freebsd-security  Thu Aug 17 07:59:11 1995
Return-Path: security-owner
Received: (from majordom@localhost)
          by freefall.FreeBSD.org (8.6.11/8.6.6) id HAA16983
          for security-outgoing; Thu, 17 Aug 1995 07:59:11 -0700
Received: from strider.ibenet.it ([194.179.130.1])
          by freefall.FreeBSD.org (8.6.11/8.6.6) with ESMTP id HAA16956
          for <security@freebsd.org>; Thu, 17 Aug 1995 07:58:58 -0700
Received: (from piero@localhost) by strider.ibenet.it (8.6.12/8.6.12) id QAA00714; Thu, 17 Aug 1995 16:59:15 +0200
From: Piero Serini <piero@strider.ibenet.it>
Message-Id: <199508171459.QAA00714@strider.ibenet.it>
Subject: Re: Login hole
To: kelly@fsl.noaa.gov (Sean Kelly)
Date: Thu, 17 Aug 1995 16:59:14 +0200 (MET DST)
Cc: terry@vector.eikon.e-technik.tu-muenchen.de, security@freebsd.org
In-Reply-To: <9508171314.AA03564@emu.fsl.noaa.gov> from "Sean Kelly" at Aug 17, 95 07:14:13 am
Reply-To: Piero@strider.ibenet.it
Operating-System: FreeBSD 1.1.5.1
X-Phone-Number: +39 (2) 58113562
X-Mailer: ELM [version 2.4 PL23]
Content-Type: text
Content-Length: 575       
Sender: security-owner@freebsd.org
Precedence: bulk

Hello.

Quoting from Sean Kelly (Thu Aug 17 15:14:13 1995):
...
> in /.  Some of my users find this behavior convenient ... if the NFS
> server for their home directories is down, they can still read mail.

Yes,  it's  ok, it's not a security hole, as a normal user can do
no more harm this way than (s)he can do loggin  in  with  his/her
usual home.

Bye,
--
#        $Id: .signature,v 1.12 1995/08/14 12:10:54 piero Exp $
Piero Serini                                            Via Giambologna, 1 
<Piero@Free.IT>                                     I 20136 Milano - ITALY