[Pkg-dspam-misc] Bug#356835: Preference: leave authentication
module choice out of dspam-webfrontend
Matthijs Mohlmann
matthijs at cacholong.nl
Wed Mar 15 22:49:02 UTC 2006
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Jesus Climent wrote:
> On Tue, Mar 14, 2006 at 09:36:05PM +0100, Jesus Climent wrote:
>
>>On Tue, Mar 14, 2006 at 02:39:57PM +0100, Martijn Pieters wrote:
>>
>>>My preference would be for dspam-webfrontend to not attempt to install
>>>any authentication modules at all; it merely should communicate the need
>>>for authentication and how such authentication maps to email accounts.
>>>
>>>With the default Debian setup the mod_auth_shadow module requires that
>>>the Apache server gain read-access to the shadow file, which is not
>>>something I'd want to do on my system, as it undoes the security offered
>>>by the shadow file in the first place.
>>
>>I agree with this view.
>
>
> Anyone else +1 ?
>
Sure, and the fix is already in svn ;)
Regards,
Matthijs Mohlmann
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.2.2 (GNU/Linux)
Comment: Using GnuPG with Thunderbird - http://enigmail.mozdev.org
iD8DBQFEGJne2n1ROIkXqbARAtZXAJ9aS8inNbpMCdhSh+uV1S7U37tzoACfRRaJ
SKPVd+RHwuu7e5npbb//+go=
=r1Km
-----END PGP SIGNATURE-----
More information about the Pkg-dspam-misc
mailing list