On Monday, August 11, 2003, at 02:17 PM, TheSin wrote:
also there will no longer be a random gen password, it will be a crypt pass or it will be blank which will mean a locked user which will be most common.
Sorry to beat this point to death, but I feel quite strongly that there should never be a password on any daemon accounts. Even an encrypted or hashed password is still a default password, and a default password is a backdoor for entry.
I agree. If the user feels the need to override it, they can set it themselves. There's no reason to allow passworded login to daemon accounts I can imagine.
-- We put a lot of thought into our defaults. We like them. If we didn't, we would have made something else be the default. So keep your cotton-pickin' hands off our defaults. Don't touch. Consider them mandatory. "Mandatory defaults" has a nice ring to it.
------------------------------------------------------- This SF.Net email sponsored by: Free pre-built ASP.NET sites including Data Reports, E-commerce, Portals, and Forums are available now. Download today and enter to win an XBOX or Visual Studio .NET. http://aspnet.click-url.com/go/psa00100003ave/direct;at.aspnet_072303_01/01 _______________________________________________ Fink-devel mailing list [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/fink-devel
