Re: non-root password lookups?

To: debian-mentors@lists.debian.org
Subject: Re: non-root password lookups?
From: "J. S. Connell" <ankh@canuck.gen.nz>
Date: Tue, 19 Jan 1999 12:02:36 -0500 (EST)
Message-id: <[🔎] Pine.LNX.4.05.9901191158230.28551-100000@canuck.gen.nz>
In-reply-to: <[🔎] 19990119194901.C7545@ormond.unimelb.edu.au>

On Tue, 19 Jan 1999, Chris wrote:

> Well...then the query is at your control - and if you make a single
> query take a full second (or more) then it will take a very long time
> to brute force anything (and thats assuming there is no logging).

That doesn't solve the problem, merely slow it down.

On the subject of rpc.pwdauthd (Solaris' daemon): it makes for one heck of
a bottleneck on a mail server responding to 10-15 POP3 connections per
second - rpc.pwdauthd starts sucking up huge amounts of CPU time, and you
start getting lots of RPC timeouts.  It also uses STREAMS plus some variant
of LOCAL_CREDS to "prove" the daemon is alright.  More on this in my next
message.

--Jeff

Reply to:

References:
- Re: non-root password lookups?
  - From: Chris <chris@ormond.unimelb.edu.au>

Prev by Date: Re: Lintian error: executable-in-usr-doc
Next by Date: Re: non-root password lookups?
Previous by thread: Re: non-root password lookups?
Next by thread: Re: non-root password lookups?
Index(es):
- Date
- Thread