Skip site navigation (1)Skip section navigation (2)
Date:      Wed, 29 Nov 1995 15:19:07 -0700 (MST)
From:      Terry Lambert <terry@lambert.org>
To:        nate@rocky.sri.MT.net (Nate Williams)
Cc:        terry@lambert.org, nate@rocky.sri.MT.net, freebsd-current@FreeBSD.org
Subject:   Re: schg flag on make world in -CURRENT
Message-ID:  <199511292219.PAA28811@phaeton.artisoft.com>
In-Reply-To: <199511292215.PAA21562@rocky.sri.MT.net> from "Nate Williams" at Nov 29, 95 03:15:18 pm

next in thread | previous in thread | raw e-mail | index | archive | help
> > > You can 'su' on insecure lines.  You can't directly login as root on
> > > insecure lines.
> > 
> > Paraphrased: "You can use a root password on insecure lines.  You can't
> > directly use a root password on insecure lines."
> 
> Close.
> 
> You can't use the root password on insecure lines w/out at least some
> initial form of authentication.

Closer.


You can't make the root password succeptible to snooping on insecure
lines w/out at least some initial form of authentication equally
succeptible to snooping (ie: "secure" is a NO-OP if it doesn't prevent
root logins).

I like the security level bump compromise soloution.  It lets people who
want the current, useless behaviour have it.


					Terry Lambert
					terry@lambert.org
---
Any opinions in this posting are my own and not those of my present
or previous employers.



Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?199511292219.PAA28811>