Date: Sun, 20 May 2007 17:49:19 +0200 From: =?utf-8?Q?Dag-Erling_Sm=C3=B8rgrav?= <des@des.no> To: "Zane C.B." <v.velox@vvelox.net> Cc: FreeBSD Security <freebsd-security@freebsd.org> Subject: Re: PAM exec patch to allow PAM_AUTHTOK to be exported. Message-ID: <86bqgfh4w0.fsf@dwp.des.no> In-Reply-To: <20070519130533.722e8b57@vixen42> (Zane C. B.'s message of "Sat\, 19 May 2007 13\:05\:33 -0400") References: <20070519130533.722e8b57@vixen42>
next in thread | previous in thread | raw e-mail | index | archive | help
"Zane C.B." <v.velox@vvelox.net> writes: > I figure some one here may find this interesting. I just begun work > on allowing a smb home directory to be automounted upon login. Your patch opens a gaping security hole. Sensitive information should never be placed in the environment. DES --=20 Dag-Erling Sm=C3=B8rgrav - des@des.no
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?86bqgfh4w0.fsf>