[ On Friday, April 28, 2000 at 14:24:46 (+0200), B-CK ANDREAS/TKELOV96ORD wrote: ]
> Subject: Re: pam patch
>
> It's only men't to be a replacement for the /etc/passwd and
> /etc/shadow support that is alredy suported by cvs.
> The security level is the same as with /etc/passwd
In my opinion that part of CVS is deprecated too. CVS is not a security
tool and it was not designed with security in mind. It is intended to
be run by the user directly, and not act as an agent on his behalf.
> the patch is usefull if one want to support password through pam
> amd ldap and is in a private network.
Most security problems stem from "inside" risks.... :-)
--
Greg A. Woods
+1 416 218-0098 VE3TCP <[EMAIL PROTECTED]> <robohack!woods>
Planix, Inc. <[EMAIL PROTECTED]>; Secrets of the Weird <[EMAIL PROTECTED]>
