info-cvs
[Top][All Lists]
Advanced

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Self compiling and login failure messages


From: Wolfgang Mettbach
Subject: Self compiling and login failure messages
Date: Thu, 06 Mar 2003 09:09:57 +0100
User-agent: Mozilla/5 - Mozilla/4.75 compatible - Netscape 8

Hello,

I downloaded the latest source code to get rid of the security bugs hanging
around in older versions. After compiling I noticed messages about login
failures in the syslog file. This wouldn't be bad if the used password wasn't
written there unencrypted. If someone just mistypes one single character of
his/her password it would be very easy to crack the real password.

How do I get rid of these messages? Do I have to modify the source code or is
there an option that can be used when compiling that I haven't found yet?

(PS: I know that a pserver is not a very secure thing to use, but we have our
reasons why we must use it.)

Thanks in advance for any help.

Regards,
-- 
Wolfgang Mettbach        Phone: +49 (0)5251 50081-22
ynes GmbH                Fax:   +49 (0)5251 50081-19
Paderborn (Germany)      http://www.ynes.de





reply via email to

[Prev in Thread] Current Thread [Next in Thread]