|
|
楼主 |
发表于 2004-12-9 10:15:38
|
显示全部楼层
我刚找到一个。。。。看来我得想个办法去找vsftpd不使用pam的验证,而不是去装一个pam.
n/openssh-3.7.1p2-i486-1.tgz: Upgraded to openssh-3.7.1p2.
This fixes security problems with PAM authentication. It also includes
several code cleanups from Solar Designer. Slackware does not use PAM and is
not vulnerable to any of the fixed problems.
Please indulge me for this brief aside (as requests for PAM are on the rise):
If you see a security problem reported which depends on PAM, you can be
glad you run Slackware. I think a better name for PAM might be SCAM, for
Swiss Cheese Authentication Modules, and have never felt that the small
amount of convenience it provides is worth the great loss of system
security. We miss out on half a dozen security problems a year by not
using PAM, but you can always install it yourself if you feel that
you're missing out on the fun. (No, don't do that)
OK, I'm done ranting here. :-) |
|
IP卡
狗仔卡
发表于 2004-12-9 09:56:42
提升卡
置顶卡
沉默卡
喧嚣卡
变色卡
显身卡