From owner-freebsd-security  Wed May 10 22:58:15 2000
Delivered-To: freebsd-security@freebsd.org
Received: from jason.argos.org (a1-3b058.neo.rr.com [24.93.181.58])
	by hub.freebsd.org (Postfix) with ESMTP id DB55F37B788
	for <security@FreeBSD.ORG>; Wed, 10 May 2000 22:58:10 -0700 (PDT)
	(envelope-from mike@argos.org)
Received: from localhost (mike@localhost)
	by jason.argos.org (8.9.1/8.9.1) with ESMTP id BAA00212;
	Thu, 11 May 2000 01:57:08 -0400
Date: Thu, 11 May 2000 01:57:08 -0400 (EDT)
From: Mike Nowlin <mike@argos.org>
To: Mike Silbersack <silby@silby.com>
Cc: "Chris D. Faulhaber" <jedgar@fxp.org>,
	Peter van Dijk <petervd@vuurwerk.nl>, security@FreeBSD.ORG
Subject: Re: envy.vuurwerk.nl daily run output
In-Reply-To: <Pine.BSF.4.21.0005101627170.28527-100000@achilles.silby.com>
Message-ID: <Pine.LNX.4.05.10005110155420.167-100000@jason.argos.org>
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII
Sender: owner-freebsd-security@FreeBSD.ORG
Precedence: bulk
X-Loop: FreeBSD.org


> I understand that diffing every user's authorized_keys would be a huge
> pain, perhaps only root/toor need to be checked.

Or everyone in group 0 -- the people in that group should understand the
relevance of changes in these files, and why ask for problems?

(Not saying this is a good idea, (although it might be), but if you're
gonna do it, do it right.)

mike




To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-security" in the body of the message