[333] in Hesiod
Re: Hesiod 2.0.0
daemon@ATHENA.MIT.EDU (Greg Hudson)
Sat Nov 30 22:37:16 1996
Date: Sat, 30 Nov 1996 22:08:41 -0500
From: Greg Hudson <ghudson@MIT.EDU>
To: Russell McOrmond <russell@flora.ottawa.on.ca>
Cc: hesiod@MIT.EDU
In-Reply-To: "[329] in Hesiod"
Thanks for the problem reports, they should all be fixed in the next
release.
> 5) I have done some local enhancements to hes_getpwname() in order
> to implement a shadow password arrangement. I am using this for
> things such as the CYRUS IMAPD server for keeping passwords. Is
> anyone interested in this patch? Would it be possible for something
> like this to be included in the distribution?
Who gets to look at the shadow password information? Even if you
assume secure DNS, I don't think this could be done securely. (We
don't recommend putting encrypted passwords in Hesiod password
information; we recommend using Kerberos.)
