madt.e-technik.uni-dortmund.de

• Next message: Michael Schwager: "Re: Header logging, revisited"
• Previous message: Greg Stark: "Re: how to bind smtp client to specific address?"
• Maybe reply: Matthias Andree: "Re: domain.name HOLD:[dynam.ip.addr] ?"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

jseymourLinxNet.com (Jim Seymour) writes:

> Matthias Andree <madt.e-technik.uni-dortmund.de> wrote:
> >
> > Craig Sanders <castaz.net.au> writes:
> >
> > > Taylor UUCP is highly recommended - it compiles on most (probably all)
> > > unix systems and is available pre-packaged for all Linux and *BSD
> > > systems that i know of. see http://www.airs.com/ian/ for more info.
> >
> > Note that the pre-packaged versions I have encountered OMIT encrypting
> > the password file which is a compile-time option.
>
> Which of course results in "WHAT?!?!" at first blush. But the file is
> in a restricted directory (IIRC) and is not readable except by root
> (again: IIRC), so the problem is not quite so big a one as it would of
> course otherwise be.

It's not wrong to encrypt the passwords other systems use to dial-in,
even if the directory is not free to be read. With security, "every
little bit helps". That's why I mentioned it. Everybody is free to
compile Taylor UUCP on his own with passwd-encryption enabled, so people
might be more inclined to do so if they are warned.

-- 
Matthias Andree
Bayer 04 Leverkusen Bundesligatabellenfuehrer (Fussball). Wurde auch
Zeit, die Bayern von der Tabellenspitze zu verjagen.

• Next message: Michael Schwager: "Re: Header logging, revisited"
• Previous message: Greg Stark: "Re: how to bind smtp client to specific address?"
• Maybe reply: Matthias Andree: "Re: domain.name HOLD:[dynam.ip.addr] ?"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]