• [^] # Re: Slackware 9.1

    Posté par . En réponse à la dépêche Slackware 9.1. Évalué à 3.

    le chancgelog contient plusieurs troll
    ''Please indulge me for this brief aside (as requests for PAM are on the rise):
    If you see a security problem reported which depends on PAM, you can be
    glad you run Slackware. I think a better name for PAM might be SCAM, for
    Swiss Cheese Authentication Modules, and have never felt that the small
    amount of convenience it provides is worth the great loss of system
    security. We miss out on half a dozen security problems a year by not
    using PAM, but you can always install it yourself if you feel that
    you're missing out on the fun. (No, don't do that)"
    "pasture/dontuse/wu-ftpd/wu-ftpd-2.6.2-i486-3.tgz: Fixed a security problem in
    /etc/ftpconversions (CVE-1999-0997). There's also another hole in wu-ftpd
    which may be triggered if the MAIL_ADMIN feature (notifies the admin of
    anonymous uploads) is used, so MAIL_ADMIN has been disabled in this build.
    Also note that we've moved this from /pasture to /pasture/dontuse, which
    should tell you something."