Subject: Re: pseudo-shadowing of passwords with ypserv?
To: Ignatios Souvatzis <is@jocelyn.rhein.de>
From: Keith Moore <moore@cs.utk.edu>
List: tech-net
Date: 10/06/1998 17:55:56
> Let me (at least partially) object: making the occasional screen
> lock program fail, is a security problem, too. What do xlock{,more} do? lock?

these definitely have to be considered.  but it seems that on most platforms
that support shadow passwords, xlock and similar programs have to be able to 
run set-uid anyway. if they run set-uid then they should get privileged
ports and the server will return the encrypted passwords.

Keith