On Fri, 12 May 2000, Nick Sayer wrote:
> I would like to gather some opinions in regards to _very slightly_
> backing off
> on rexec's security.
Don't do it?
> rexec makes the following checks...
[ uid==0, password blank, uname in /etc/ftpusers ]
> I put it to everyone that the first and third checks are equivalent and
What you say is correct, but personally I think deprecated really should
mean deprecated. There are better alternatives to rexec (ssh - open or
otherwise) and they ought to be pushed.
If admins _really_ want this functionality, patching the source isn't so much
of a hardship. But it makes the path f least resistance the installation
of a better alternative :-)
jan
--
jan grant, ILRT, University of Bristol. http://www.ilrt.bris.ac.uk/
Tel +44(0)117 9287163 Fax +44 (0)117 9287112 RFC822 [EMAIL PROTECTED]
Spreadsheet through network. Oh yeah.
To Unsubscribe: send mail to [EMAIL PROTECTED]
with "unsubscribe freebsd-hackers" in the body of the message
