[Top][All Lists]

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: Design principles and ethics

From: Pierre THIERRY
Subject: Re: Design principles and ethics
Date: Sun, 30 Apr 2006 21:10:24 +0200
User-agent: Mutt/1.5.11+cvs20060403

Scribit Tom Bachmann dies 30/04/2006 hora 20:48:
> > In the absence of setiud, and assuming that parents get to inspect
> > their children, how is /sbin/passwd protected?
> Not at all. It only accesses data the user is allowed to access. I
> explained this in a former mail.

There are two separate questions: how can we achieve to authenticate the
user when he logs in without compromising the security of the whole
system, and how could the current /sbin/passwd be protected in the
absence of setuid.

Please do not reject questions by distorting them. BTW, in the
user-provided authentication mechanism, there would be no /sbin/passwd,
but /bin/passwd. ;-)

The user-provided authentication mechanism only answer the first

Nowhere man
OpenPGP 0xD9D50D8A

Attachment: signature.asc
Description: Digital signature

reply via email to

[Prev in Thread] Current Thread [Next in Thread]