Hi Rene, > Now if it works for normal sites also, it means your shadow password > file is world readable... Do you prefer world readable shadow file or suid > bit on authenticate? :o)
I do indeed prefer world readable shadow file over an exploitable SUID programm any time of the day, but that's a call which anyone has to make for him-/herself. ;o) -- With best regards, Michael Stauber [EMAIL PROTECTED] Unix/Linux Support Engineer _______________________________________________ cobalt-security mailing list [EMAIL PROTECTED] http://list.cobalt.com/mailman/listinfo/cobalt-security
