Subject: Re: login.conf for selecting password verification method (was Re: Kerberos is on by default?)
To: NetBSD Userlevel Technical Discussion List <tech-userlevel@NetBSD.ORG>
From: Greg A. Woods <woods@weird.com>
List: tech-userlevel
Date: 07/11/2000 17:13:07
[ On Tuesday, July 11, 2000 at 11:34:41 (-0700), Neil A. Carson wrote: ]
> Subject: Re: login.conf for selecting password verification method (was Re: Kerberos is on by default?)
>
> If you can screw with shared libraries to stuff programs, either
>
> 1) Your system is insecure
Well, yes, but the problem seems to be that to remove all of the
vulnerabilities you actually have to remove the dynamic linker itself. :-)
I.e. there are those who will say that you can always screw with shared
libraries in "unapproved" ways.
--
Greg A. Woods
+1 416 218-0098 VE3TCP <gwoods@acm.org> <robohack!woods>
Planix, Inc. <woods@planix.com>; Secrets of the Weird <woods@weird.com>