tech-security: Re: proposed changes to /etc/security

Subject: Re: proposed changes to /etc/security
To: Matthew Jacob <mjacob@feral.com>
From: Martin J. Laubach <mjl@emsi.priv.at>
List: tech-security
Date: 07/25/1998 20:57:46

| /etc/security doesn't grok YP tokens in master.passwd or group
| files and thus the daily security output complains about these
| tokens.

| +		if ($0 == "+:::::::::") {

  Well, let's do it right then. What about "+user:", "+user:*:",
and whatever other variants are possible?

  Is it a security threat to ignore lines beginning with "+" or
"-"?

	mjl