Subject: Re: RFC: securing output of /etc/security
To: Steven M. Bellovin <smb@cs.columbia.edu>
From: Ben Collver <collver@peak.org>
List: netbsd-users
Date: 05/10/2006 09:49:00
On Wed, May 10, 2006 at 11:23:49AM -0400, Steven M. Bellovin wrote:
> The problem with this scheme is that it creates an (optional) dependency
> in the base system on something in pkgsrc.  Let me suggest an alternate
> strategy: modify /etc/security to have some standard API to some arbitrary
> other program.  Then create a package -- which depends on gnupg and mpack
> -- do do what you want.

That's a good idea, shifting it to pkgsrc with dependencies.

It could easily be made to handle daily and weekly as well, if so
desired.

Ben