[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re[2]: Debian PAM



"Stanislav Malyshev a.k.a Frodo" <frodo@sharat.co.il> wrote:

>  VS>> 	Problem that if it is security hole in PAM (and usually is) it is
>  VS>> holes in all progs used PAM. I will never install it.
>  
>  Don't you fear to install libc also? If there's bug in libc, *all* of
>  your
>  programs are vulnerable, except statically linked ones! Oh terror! Let's
>  abandon all the idea of shared libs then - for it's nothing special for
>  PAM in this regard, all of them are same.

Well, not exactly. libc has been there for a much longer time and is in use
in much more places than the PAM stuff, so one can perfectly believe that
the chances of (security-related) bugs exist in libc is significantly lower.

Regards,

Evgeny


--
   ____________________________________________________________
  / Evgeny Stambulchik  <fnevgeny@plasma-gate.weizmann.ac.il>  \
 /  Plasma Laboratory, Weizmann Institute of Science, Israel \  \
 |  Phone : (972)8-934-3610  == | == FAX   : (972)8-934-3491 |  |
 |  URL   :    http://plasma-gate.weizmann.ac.il/~fnevgeny/  |  |
 |  Finger for PGP key >=====================================+  | 
 |______________________________________________________________|