cvs commit: src/etc/rc.d gbde_swap
Pawel Jakub Dawidek
pjd at FreeBSD.org
Wed Feb 4 11:49:42 PST 2004
On Wed, Feb 04, 2004 at 07:53:50AM -0800, Dag-Erling Smorgrav wrote:
+> Commiter: Dag-Erling Smorgrav <des at FreeBSD.org>
+> Branch: HEAD
+>
+> Files:
+> 1.2 src/etc/rc.d/gbde_swap
+>
+> Log:
+> We don't really need a lockfile, and most likely can't create one at
+> this point.
I'm not sure, that giving a passphrase as an argument is safe.
Maybe it is at boot time (but it is still doubtful), but scripts from
/etc/rc.d/ are intended to run after boot as well and here it is obviously
insecure.
We should better implement -k/-K options for gbde(8), that will allow getting
passphrase from a file or standard input.
--
Pawel Jakub Dawidek http://www.FreeBSD.org
pjd at FreeBSD.org http://garage.freebsd.pl
FreeBSD committer Am I Evil? Yes, I Am!
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 187 bytes
Desc: not available
Url : http://lists.freebsd.org/pipermail/cvs-src/attachments/20040204/bed2372e/attachment-0001.bin
More information about the cvs-src
mailing list