> > 	we can reduce the number of setuid root login_xx if we design things
> > 	carefully.
> I don't think you mean OpenBSD's BSD auth isn't implemented carefully.
> Thus, BSD auth needs 6 extra setuid programs and 7 extra setgid
> programs as its nature. Right?

	in the current state, the number is correct.  OpenBSD will sure try to
	reduce setuid programs to fewer numbers.

itojun