In article <Pine.LNX.4.33.0109041529360.12807-100000@denkigama.nat.shibuya.blink.co.jp>,
Curt Sampson <cjs@cynic.net> wrote:
>
>What do you mean, "with NetBSD"? How, before we started shipping ssh,
>could you get to root from a non-secure terminal with only the root
>password?
>
>Answer: you couldn't. (Unless maybe you exploited a security hole.)
>
>So "years of common practice with NetBSD" were broken when we started
>shipping ssh.

Right, but that would indicate that ssh should be changed to obey
the /etc/ttys "secure" option if we wanted all daemons to behave
consistently.

christos