Bug 113211
Summary: | should login have pam_securetty as requisite? | ||
---|---|---|---|
Product: | Red Hat Enterprise Linux 3 | Reporter: | Steve Bonneville <sbonnevi> |
Component: | util-linux | Assignee: | Elliot Lee <sopwith> |
Status: | CLOSED NOTABUG | QA Contact: | Ben Levenson <benl> |
Severity: | medium | Docs Contact: | |
Priority: | medium | ||
Version: | 3.0 | CC: | johnsonm |
Target Milestone: | --- | Keywords: | Security |
Target Release: | --- | ||
Hardware: | All | ||
OS: | Linux | ||
Whiteboard: | |||
Fixed In Version: | Doc Type: | Bug Fix | |
Doc Text: | Story Points: | --- | |
Clone Of: | Environment: | ||
Last Closed: | 2004-02-20 19:24:07 UTC | Type: | --- |
Regression: | --- | Mount Type: | --- |
Documentation: | --- | CRM: | |
Verified Versions: | Category: | --- | |
oVirt Team: | --- | RHEL 7.3 requirements from Atomic Host: | |
Cloudforms Team: | --- | Target Upstream Version: | |
Embargoed: |
Description
Steve Bonneville
2004-01-09 19:15:06 UTC
It's a tradeoff between transmitting the root password in the clear, and transmitting the fact that we're using securetty to anyone who wants it. Since the latter is something anyone would reasonably assume anyways, and the former is a very secret piece of information, I'd have to say that the present setup makes more sense. |