Just the minor comment about AFS /bin/login that it contains the same
LD_LIBRARY_PATH hole that Sun just fixed. A minor security hole, but
worth patching.
Brian
(The hole lets a user get a shell in a no-password account (i.e. user
"sync"), even if the login shell is intended to be a non-interactive
program (i.e. /bin/sync). The bug has been discussed on usenet, and
source code that gives the basic idea of how to fix it is in the recent
CERT bulletin. Wietse Venema ([EMAIL PROTECTED]) wrote the patch.)
... just an afs user. I don't work for ITS. These are my opinions.
