[Top][All Lists]
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
RE: System password authentication
From: |
Mike Ayers |
Subject: |
RE: System password authentication |
Date: |
Mon, 14 Apr 2003 12:38:51 -0700 |
> From: Larry Jones [mailto:address@hidden
> Sent: Friday, April 11, 2003 2:47 PM
> Mea culpa -- I was looking at the wrong code. You were
> right, that code
> *is* checking the system password, not the repository password. And
> you're also correct that it accepts a non-blank entered password as
> matching a blank system password but rejects a blank entered
> password.
> I have no idea why -- the code seems to have been that way
> forever. The
> fascist side of my personality wants to reject any attempt to use a
> system account with no password, the more liberal side says that if
> someone is stupid enough to have an account with no password then they
> deserve whatever happens (one can argue whether than means
> accepting any
> password at all or just a blank one). Opinions from the
> peanut gallery?
This peanut would like a pointer to the rest of this thread, please, as
I would like to be sure of what we're discussing here.
Thanks,
/|/|ike