Re: PAM authentication patch

bug-cvs

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: PAM authentication patch - v2

From:	Brian Murphy
Subject:	Re: PAM authentication patch - v2
Date:	Wed, 16 Apr 2003 09:31:30 +0200
User-agent:	Mozilla/5.0 (X11; U; Linux i686; en-US; rv:1.0.0) Gecko/20020623 Debian/1.0.0-0.woody.1

Mark D. Baushke wrote:

I doubt I can convince you of how evil it is to send passwords in the
clear for your :pserver: connections to cvs. I just shudder to think of
folks seeing that cvs support PAM and thinking for some reason that it
is not leaking their passwords in a large number of ways.

PAM also works with telnet. I don't think anyone thinks a PAM enabled login
via telnet is any more secure than an ordinary passwd based login.

/Brian

[Prev in Thread]

Current Thread

[Next in Thread]

Re: PAM authentication patch - v2, (continued)

Prev by Date: Re: PAM authentication patch - v2
Next by Date: Re: PAM authentication patch - v2
Previous by thread: Re: PAM authentication patch - v2
Next by thread: Re: PAM authentication patch - v2
Index(es):
- Date
- Thread