[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: Fwd: Privacy International seeks entries in "stupid security" contest
Must it be be a current security measure, or would pcnfsd qualify?
(For those who never had the misfortune to run into that one: it was
for PC NFS client implementations used by people who thought that
sending the username and password across the network in plaintext in
order to get back a uid/gid pair was "more secure" than letting the PC
user specify the uid/gid pair directly. Some of FTP Software's
customers felt so strongly about this that they objected to having the
options for bypassing pcnfsd documented in the product manuals.)