I just upgraded my main machine to the netbsd-3 branch and noticed
a couple of things that violate the POLA and should be fixed if possible:


  (1) With the sshd.conf from the installation sets (PAM enabled), 
a remote connect looks like this:

	% ssh asparagus
	Password:         <--- does not wait for input here
	Response: 
	mjl@asparagus's password: 

  This is... strange. I suppose it's a leftover skeykeys file,
but what is that first "Password:" prompt that is skipped and
where is the S/key challenge then?


  (2) named.conf has been moved to /etc while it has been in /etc/namedb
about forever. I personally like it better in /etc/namedb so /etc
isn't cluttered with a ton of individual config files, but that's
personal preference. Point is, it has been in /etc/namedb for several
releases (since 1.2 or thereabouts I think), we shouldn't move configs
back and forth; if I want linux (which BTW keeps it in a /etc/bind
directory), I know where to find it.


  (3) The "sortlist" parameter in /etc/resolv.conf seems to have ceased
to work: Even though I have a sortlist 212.16.40.152/255.255.255.248,
a "ping fw" round robins between all of fw's ip addresses:

	asparagus:35 [~] $ ping -c1 fw
	PING fw.emsi.priv.at (212.16.40.130): 56 data bytes
	..
	asparagus:36 [~] $ ping -c1 fw
	PING fw.emsi.priv.at (212.16.40.153): 56 data bytes
	..
	asparagus:37 [~] $ ping -c1 fw
	PING fw.emsi.priv.at (212.16.40.145): 56 data bytes

  I believe this has worked with 1.5 and 1.6, not sure about 2.x.


    Regards,

	mjl