In message <[EMAIL PROTECTED]> Nick Sayer writes:
: Warner Losh wrote:
:
: > [...] In the absense of this
: > test, machines in a yp netowrk would be extremely vulnerable to root
: > uid penetration when an intruder can hack the yp database, or spoof
: > replies.
:
: Ok. How about adding an rexecd command line flag to disable
: that test (with suitable warnings in the man page)?
I'd be all for a "make this insanely insecure protocol even more
insecure because security doesn't matter to my setup" flag. So long
as it isn't default :-)
Warner
To Unsubscribe: send mail to [EMAIL PROTECTED]
with "unsubscribe freebsd-hackers" in the body of the message
