tech-userlevel: Re: login.conf for selecting password verification method (was Re: Kerberos is on by default?)

Subject: Re: login.conf for selecting password verification method (was Re: Kerberos is on by default?)
To: NetBSD Userlevel Technical Discussion List <tech-userlevel@NetBSD.ORG>
From: Greg A. Woods <woods@weird.com>
List: tech-userlevel
Date: 07/11/2000 17:13:07

[ On Tuesday, July 11, 2000 at 11:34:41 (-0700), Neil A. Carson wrote: ]
> Subject: Re: login.conf for selecting password verification method (was Re:   Kerberos is on by default?)
>
> If you can screw with shared libraries to stuff programs, either
> 
> 1) Your system is insecure

Well, yes, but the problem seems to be that to remove all of the
vulnerabilities you actually have to remove the dynamic linker itself.  :-)

I.e. there are those who will say that you can always screw with shared
libraries in "unapproved" ways.

-- 
							Greg A. Woods

+1 416 218-0098      VE3TCP      <gwoods@acm.org>      <robohack!woods>
Planix, Inc. <woods@planix.com>; Secrets of the Weird <woods@weird.com>