From owner-freebsd-java  Fri Mar  8  8: 8:48 2002
Delivered-To: freebsd-java@freebsd.org
Received: from mclean.mail.mindspring.net (mclean.mail.mindspring.net [207.69.200.57])
	by hub.freebsd.org (Postfix) with ESMTP
	id B89B237B405; Fri,  8 Mar 2002 08:08:43 -0800 (PST)
Received: from dialup-64.156.149.138.dial1.losangeles1.level3.net ([64.156.149.138] helo=netcom1.netcom.com)
	by mclean.mail.mindspring.net with esmtp (Exim 3.33 #1)
	id 16jMvC-0001XC-00; Fri, 08 Mar 2002 11:08:43 -0500
Received: from localhost (localhost [127.0.0.1])
	by netcom1.netcom.com (Postfix) with ESMTP
	id CEC4713120; Fri,  8 Mar 2002 08:08:39 -0800 (PST)
Subject: Re: Updated www/orion --> 1.5.2_7
From: Mike Harding <mvh@ix.netcom.com>
To: Ernst de Haan <znerd@FreeBSD.ORG>
Cc: "Koster, K.J." <K.J.Koster@kpn.com>, java@FreeBSD.ORG
In-Reply-To: <200203081510.g28FArd09800@zaphod.euronet.nl>
References: <59063B5B4D98D311BC0D0001FA7E452205FDA448@l04.research.kpn.com>
	 <200203081510.g28FArd09800@zaphod.euronet.nl>
Content-Type: text/plain
Content-Transfer-Encoding: 7bit
X-Mailer: Evolution/1.0.2 
Date: 08 Mar 2002 08:08:39 -0800
Message-Id: <1015603719.568.1.camel@netcom1.netcom.com>
Mime-Version: 1.0
Sender: owner-freebsd-java@FreeBSD.ORG
Precedence: bulk
List-ID: <freebsd-java.FreeBSD.ORG>
List-Archive: <http://docs.freebsd.org/mail/> (Web Archive)
List-Help: <mailto:majordomo@FreeBSD.ORG?subject=help> (List Instructions)
List-Subscribe: <mailto:majordomo@FreeBSD.ORG?subject=subscribe%20freebsd-java>
List-Unsubscribe: <mailto:majordomo@FreeBSD.ORG?subject=unsubscribe%20freebsd-java>
X-Loop: FreeBSD.org

The startup script in /usr/local/etc/rc.d still does not work because
you set the uid to 'www' before the script tries to create the
/var/run/orion.pid file - this fails, and it doesn't start.

- Mike H.

On Fri, 2002-03-08 at 07:10, Ernst de Haan wrote:
> Kees Jan and Mike,
> 
> > Using default passwords is simply a bad idea. Remember the slashdot test
> > site hack from a while back? Oracle anyone? (Was it Oracle? I'm not sure,
> > big database vendor).
> 
> Okay. Got the point. You're right.
> 
> > Please leave the admin account as it is in Orionserver's distribution kit.
> > When people need the admin account, they can enable it and set a password
> > for their purpose (and it's their own stupid fault if they use "123"). If
> > they don't need it, they won't unknowingly have accounts enabled that other
> > people know the password for.
> 
> Okay, what if I let the port ask for the admin password if the port is run 
> from the commandline, while I will disable the admin account if the port is 
> run in a batch ?
> 
> 
> Ernst
> 
> -- 
> Ernst de Haan
> EuroNet Internet B.V.
> 
>     "Come to me all who are weary and burdened
>         and I will give you rest" -- Jesus Christ
> 



To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-java" in the body of the message