===================================================================
RCS file: /cvsrepo/anoncvs/cvs/www/errata26.html,v
retrieving revision 1.78
retrieving revision 1.79
diff -c -r1.78 -r1.79
*** www/errata26.html 2017/03/28 04:04:52 1.78
--- www/errata26.html 2017/03/28 06:41:18 1.79
***************
*** 112,118 ****
hash of the root password. The damage to systems using DES passwords from this
attack is pretty heavy, but to systems with a well-chosen root password under
blowfish encoding
! (see
crypt(3))
the impact is much reduced.
(Aside: We do not consider this a localhost root hole in the default install,
--- 112,118 ----
hash of the root password. The damage to systems using DES passwords from this
attack is pretty heavy, but to systems with a well-chosen root password under
blowfish encoding
! (see
crypt(3))
the impact is much reduced.
(Aside: We do not consider this a localhost root hole in the default install,
***************
*** 216,222 ****
A source code patch exists which remedies this problem.
!
!