Processing .k5login (another patch)
Jeffrey Altman
jaltman at secure-endpoints.com
Thu Sep 2 11:55:34 EDT 2010
On 9/2/2010 11:47 AM, Sam Hartman wrote:
>>>>>> "Nicolas" == Nicolas Williams <Nicolas.Williams at oracle.com> writes:
>
> Nicolas> I'd rather have an option for specifying the location of
> Nicolas> the k5login file, so it can be moved into a location where
> Nicolas> the user cannot control it.
>
> +1
>
> In preference order
> 1) Have an option to set directory where .k5login is found
> 2) Both 1 and 3
> 3) have an option to disable .k5login processing
> 4) none of the above
>
> rationale: 1 gives you enough rope that 3 is not needed. I think I could
> even explain that to an audit firm:-).
I would prefer
1) Sam's 2
2) Sam's 1
3) Sam's 3
4) Sam's 4
Jeffrey Altman
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 487 bytes
Desc: OpenPGP digital signature
Url : http://mailman.mit.edu/pipermail/krbdev/attachments/20100902/6abf8129/attachment.bin
More information about the krbdev
mailing list