1 |
On Thu, Jun 2, 2016, at 06:44, James wrote: |
2 |
> Neil Bothwick <neil <at> digimed.co.uk> writes: |
3 |
> |
4 |
> |
5 |
> > > Does this mean we need to do anything to improve the security of our |
6 |
> > > systems? |
7 |
> |
8 |
> > The report seems to be saying that the problem is caused by using the |
9 |
> > Gentoo default config, which assumes a Gentoo environment. So it's fine |
10 |
> > on Gentoo. But it won't hurt to run glsa-check from time to time (my sync |
11 |
> > script does it every time and mails me if there's a problem). |
12 |
> |
13 |
> Which file contains the purported malaised default configration? |
14 |
> I just want to manually inspect it and verify for myself. |
15 |
|
16 |
/etc/pam.d/system-auth which is provided by pambase: |
17 |
https://gitweb.gentoo.org/proj/pambase.git/ |