| 1 |
On Thu, Jun 2, 2016, at 06:44, James wrote: |
| 2 |
> Neil Bothwick <neil <at> digimed.co.uk> writes: |
| 3 |
> |
| 4 |
> |
| 5 |
> > > Does this mean we need to do anything to improve the security of our |
| 6 |
> > > systems? |
| 7 |
> |
| 8 |
> > The report seems to be saying that the problem is caused by using the |
| 9 |
> > Gentoo default config, which assumes a Gentoo environment. So it's fine |
| 10 |
> > on Gentoo. But it won't hurt to run glsa-check from time to time (my sync |
| 11 |
> > script does it every time and mails me if there's a problem). |
| 12 |
> |
| 13 |
> Which file contains the purported malaised default configration? |
| 14 |
> I just want to manually inspect it and verify for myself. |
| 15 |
|
| 16 |
/etc/pam.d/system-auth which is provided by pambase: |
| 17 |
https://gitweb.gentoo.org/proj/pambase.git/ |
Archives