Alan Coopersmith <Alan.Coopersmith at sun.com> wrote:
> Joerg Schilling wrote:
> > Giving any kind of information about known user names is considered a
> > security
> > risk since aprox. 35 years on UNIX.
>
> Depends on site security policy - it's in the same area as deciding whether or
> not to allow fingerd to run to allow remote user name queries. It's not
> always
> bad or forbidden, just an option some sites will want and others will not.
OK, you are right with fingerd, but the last time I did see a working fingerd
on a worldwide base was in 1997 ;-)
J?rg
--
EMail:joerg at schily.isdn.cs.tu-berlin.de (home) J?rg Schilling D-13353 Berlin
js at cs.tu-berlin.de (uni)
joerg.schilling at fokus.fraunhofer.de (work) Blog:
http://schily.blogspot.com/
URL: http://cdrecord.berlios.de/private/ ftp://ftp.berlios.de/pub/schily
