The following reply was made to PR bin/10206; it has been noted by GNATS.

From: "Steven M. Bellovin" <smb@cs.columbia.edu>
To: Elad Efrat <elad@NetBSD.org>
Cc: tech-security@NetBSD.org, gnats-bugs@NetBSD.org
Subject: Re: security/10206 - proposed solution (concept) 
Date: Tue, 16 Aug 2005 19:12:29 -0400

 In message <43026322.7060500@NetBSD.org>, Elad Efrat writes:
 >Hi,
 >
 >I've written concept code, still work in progress, that allows an
 >admin to set a password policy in /etc/passwd.conf.
 >
 >
 Hmm -- at the rump session of CRYPTO 2005 tonight, there's a talk 
 "Passwords -- No Longer Viable"...
 
 		--Steven M. Bellovin, http://www.cs.columbia.edu/~smb