Re: severe deficiencies in our PAM setup

To: Nicol?s Lichtmaier <nick@debian.org>
Cc: debian-devel@lists.debian.org
Subject: Re: severe deficiencies in our PAM setup
From: Ben Collins <bcollins@debian.org>
Date: Fri, 29 Sep 2000 22:13:03 -0400
Message-id: <[🔎] 20000929221303.M411@visi.net>
In-reply-to: <[🔎] 20000929230753.A2547@debian.org>; from nick@debian.org on Fri, Sep 29, 2000 at 11:07:53PM -0300
References: <[🔎] 87pulutxal.fsf@HSE-MTL-ppp62067.qc.sympatico.ca> <[🔎] 20000924010656.C1668@visi.net> <[🔎] 20000924044550.I483@debian.org> <[🔎] 20000924043753.E1668@visi.net> <[🔎] 87u2b5ru42.fsf@glaurung.green-gryphon.com> <[🔎] 20000925105019.A7522@drow.them.org> <[🔎] 87u2b4phcr.fsf@HSE-MTL-ppp62067.qc.sympatico.ca> <[🔎] 20000929073701.E23680@debian.org> <[🔎] 20000929074036.F15994@justice.loyola.edu> <[🔎] 20000929230753.A2547@debian.org>

On Fri, Sep 29, 2000 at 11:07:53PM -0300, Nicol?s Lichtmaier wrote:
> > >  CPP syntax is a *very* well known preprocessor syntax, and it could give
> > > much flexibility not only in this case, but also in many other configuration
> > > files...
> > imho, m4 would be better if you want to do something like this. cpp has
> > a big problem for shell-type config files--it ain't real happy with # as
> > a comment character.

I am not implementing anything so complex. I am going to continue to
persue empty package files by default, a standard auth scheme, and a
simple configuration file with "security models" to choose from. I don't
want to take a chance of someones inability to understand the
configuration language to interfere with the security of their system.
Every person who wants to secure their system is not a security expert,
nor should they be.

Also remember that not every security expert is a multi-faceted language
expert and knows m4 and/or cpp. Hell, if m4 was so easy, sendmail would be
our default MTA. After all, if anyone wants to configure it, they should
be smart enough to understand or learn m4 right?

-- 
 -----------=======-=-======-=========-----------=====------------=-=------
/  Ben Collins  --  ...on that fantastic voyage...  --  Debian GNU/Linux   \
`  bcollins@debian.org  --  bcollins@openldap.org  --  bcollins@linux.com  '
 `---=========------=======-------------=-=-----=-===-======-------=--=---'

Reply to:

References:
- severe deficiencies in our PAM setup
  - From: Greg Stark <gsstark@mit.edu>
- Re: severe deficiencies in our PAM setup
  - From: Ben Collins <bcollins@debian.org>
- Re: severe deficiencies in our PAM setup
  - From: Nicolás Lichtmaier <nick@debian.org>
- Re: severe deficiencies in our PAM setup
  - From: Ben Collins <bcollins@debian.org>
- Re: severe deficiencies in our PAM setup
  - From: Manoj Srivastava <srivasta@debian.org>
- Re: severe deficiencies in our PAM setup
  - From: Daniel Jacobowitz <dan@debian.org>
- Re: severe deficiencies in our PAM setup
  - From: Greg Stark <gsstark@mit.edu>
- Re: severe deficiencies in our PAM setup
  - From: Nicolás Lichtmaier <nick@debian.org>
- Re: severe deficiencies in our PAM setup
  - From: Michael Stone <mstone@debian.org>
- Re: severe deficiencies in our PAM setup
  - From: Nicolás Lichtmaier <nick@debian.org>

Prev by Date: Re: severe deficiencies in our PAM setup
Next by Date: Re: lintian lives!
Previous by thread: Re: severe deficiencies in our PAM setup
Next by thread: Re: severe deficiencies in our PAM setup
Index(es):
- Date
- Thread