In message <[EMAIL PROTECTED]> Nick Sayer writes:
: I put it to everyone that the first and third checks are equivalent and
: redundant.
They are not redundant. They provide a little (although not much)
extra security for those sites that have had a root account added by
intruders which the admin know nothing of. In the absense of this
test, machines in a yp netowrk would be extremely vulnerable to root
uid penetration when an intruder can hack the yp database, or spoof
replies.
OK, so that's a weak wall for a weak protocol, but I'm pretty sure why
the extra check for uid 0 is in there.
Warner
To Unsubscribe: send mail to [EMAIL PROTECTED]
with "unsubscribe freebsd-hackers" in the body of the message
