Justin C. Sherrill wrote:
In fact, I propose a new rule of thumb: For any proposed feature where:
1: Matt doesn't object, and
2: No existing functionality is lost
it should go in.
I don't agree. Matt of course has a veto, but the community itself should also
agree that this is a feature
Dnia 17-03-2007, So o godzinie 00:05 +0100, Simon 'corecode' Schubert
napisał(a):
[EMAIL PROTECTED] wrote:
c) add support for openwall tcb - the alternative to shadow (with pam
module) which is more secure than pam_unix and pam_pwdb, because tools
like 'passwd' or 'chage' don't neet SUID,
Dnia 16-03-2007, Pt o godzinie 18:58 -0700, Matthew Dillon napisał(a):
Well, hmm. Kinda out of the blue, and I don't want to discourage anyone
who is this enthusiastic, but I have a few buts of my own.
1.
a) chg default password_format do blowfish since there are known
algoritm
Grzegorz Błach wrote:
Brute-force algoritm with collision can take password 100 time faster
than brute-force without brute-force.
How do you prove this claim? AFAIK collision attacks need to know the plain
text. Trying to brute-force a password means not having it in plain text.
Hence
Matthew Dillon wrote:
I personally believe that postfix is superior. I personally do not
mind running GPL'd code. But I also would prefer to have as little
GPL'd code in our managed code base as possible.
What does this mean? I would dearly like to integrate portions
On Sat, Mar 17, 2007 at 01:26:21PM +0100, Grzegorz B?ach wrote:
Brute-force algoritm with collision can take password 100 time faster
than brute-force without brute-force.
Again, password hashes are *not* simple MD5 hashes. They are not even
simple salted MD5 hashes. That doesn't mean that a
On Sat, 17 Mar 2007 15:30:11 +0100
Michel Talon [EMAIL PROTECTED] wrote:
Already the move to NetBSD pkgsrc
has cost DFLY division by 3 of the number of available ports with respect
to FreeBSD for an advantage that i have hard time to even discern.
The advantage is simple to see, as
On Sat, Mar 17, 2007 at 03:30:11PM +0100, Michel Talon wrote:
Another excellent statement! Maintaining a decent ports system is a task for
hundred people. FreeBSD has aroud 200 people doing that, Debian, around
1000.
To be fair, Debian *needs* the thousand people because the approach to
On Fri, Mar 16, 2007 at 06:58:58PM -0700, Matthew Dillon wrote:
What does this mean? I would dearly like to integrate portions of
pkgsrc managed packages into our buildworld and installworld
system, that is have the buildworld create a little package building
jail and build
Joerg Sonnenberger wrote:
One has to be totally unaware of realities to suggest tools from
obscure Linux distributions, wether they are good or bad, when such
distribution may collapse at any moment. Already the move to NetBSD
pkgsrc has cost DFLY division by 3 of the number of available
What FreeBSD and NetBSD lack is a good system for
management of binary packages. Marc has very well understood that,
and has made every effort so that updates work smoothly. To my
knowledge OpenBSD is the only BSD which has a working update
mechanism, fully integrated.
I completely
*My* *sole* opinion follows:
* pkgsrc is here to stay, it works fine, you'd better contribute to (even
smoother) pkgsrc integration
* postfix license is too restrictive (IBM), same for stunnel (GPL), developers
of *BSD systems would like to avoid licenses that are more restrictive than
BSDL.
Dnia 16-03-2007, Pt o godzinie 17:45 +0100, Joerg Sonnenberger
napisał(a):
c) add support for openwall tcb - the alternative to shadow (with pam
module) which is more secure than pam_unix and pam_pwdb, because tools
like 'passwd' or 'chage' don't neet SUID, instead it use SGID 'shadow'.
Dnia 16-03-2007, Pt o godzinie 17:57 +0100, Gergo Szakal napisał(a):
*My* *sole* opinion follows:
* pkgsrc is here to stay, it works fine, you'd better contribute to (even
smoother) pkgsrc integration
* postfix license is too restrictive (IBM), same for stunnel (GPL),
developers of *BSD
On Fri, Mar 16, 2007 at 05:45:58PM +0100, Joerg Sonnenberger wrote:
On Fri, Mar 16, 2007 at 05:17:43PM +0100, Grzegorz B?ach wrote:
a) chg default password_format do blowfish since there are known
algoritm of collision for md5.
IMO the MD5 collision attacks for overrated and might not even
Hey Grzegorz,
first of all, welcome to DragonFly!
Grzegorz Błach wrote:
I use DragonFly about 2 year,
currently I am ready to submit my tweaks and extensions to DFly system.
Now for this list. We always should consider the positive and negative effects
of change. I don't want to sound
On Fri, 16 Mar 2007 19:53:35 +0100, [EMAIL PROTECTED] / mail wrote:
Grzegorz Błach napisał(a):
Hi everyone,
hi
I use DragonFly about 2 year,
currently I am ready to submit my tweaks and extensions to DFly system.
There're:
1.
a) chg default password_format do blowfish
On Fri, 16 Mar 2007 19:43:27 +0100, Simon 'corecode' Schubert wrote:
Hey Grzegorz,
first of all, welcome to DragonFly!
Grzegorz Błach wrote:
I use DragonFly about 2 year,
currently I am ready to submit my tweaks and extensions to DFly system.
Now for this list. We always should
On Fri, Mar 16, 2007 at 06:07:07PM +0100, Grzegorz B?ach wrote:
When you do buffer-overflow in passwd you can exec any code with root
priviledges,
but with tcb you must change root password to run code with root priviledges,
and administrator will see this faster.
Who said that I want to
On Fri, 16 Mar 2007 18:31:20 +0100
Grzegorz Błach [EMAIL PROTECTED] wrote:
I use DFly because it is better than linux for me (not because it has
less restrictive license),
Same here, I just dared to spoke for *BSD developers. My desktop machine is
Windows, showing I do not care much about
On Fri, 16 Mar 2007 20:47:47 +0100
[EMAIL PROTECTED] wrote:
I don't like pkgsrc because this limitations:
1. Many packages in pkgsrc are obsolete, and there are no development
version of almost all packages (i wan't to see new version of dbmail,
xorg and enlightenment 0.17 in packages
On Fri, 16 Mar 2007 20:58:37 +0100, Joerg Sonnenberger wrote:
On Fri, Mar 16, 2007 at 06:07:07PM +0100, Grzegorz B?ach wrote:
When you do buffer-overflow in passwd you can exec any code with root
priviledges,
but with tcb you must change root password to run code with root
priviledges,
Can you please fix your MUA to follow mailing list etiquettes with
regard to line length? Thanks.
On Fri, Mar 16, 2007 at 08:47:47PM +0100, [EMAIL PROTECTED] wrote:
I don't like pkgsrc because this limitations:
1. Many packages in pkgsrc are obsolete, and there are no development
version of
[EMAIL PROTECTED] wrote:
c) add support for openwall tcb - the alternative to shadow (with pam
module) which is more secure than pam_unix and pam_pwdb, because tools
like 'passwd' or 'chage' don't neet SUID, instead it use SGID 'shadow'.
Group 'auth' may be used to read-only access to all
Well, hmm. Kinda out of the blue, and I don't want to discourage anyone
who is this enthusiastic, but I have a few buts of my own.
1.
a) chg default password_format do blowfish since there are known
algoritm of collision for md5.
I don't think this is a big issue. When I was doing
On Fri, March 16, 2007 7:05 pm, Simon 'corecode' Schubert wrote:
Short for everybody too lazy to read:
master.passwd is being split into single per-user files. these are
located in per-user dirs with mode $user:auth 710 and the files
$user:auth 640. this way only root+user can change the
26 matches
Mail list logo
