K 10
svn:author
V 6
nsayer
K 8
svn:date
V 27
2001-05-30T20:46:48.000000Z
K 7
svn:log
V 515
MFC: Security fixes to SRA telnet:

1. Add PAM support to SRA. Includes adding telnetd to /etc/pam.conf and
-lpam to the secure telnetd/telnet Makefiles.

2. Insist on secure tty before allowing root login. This should be
replaced with a suitable PAM module at some point.

3. Make sure not to overflow the xuser/xpass buffers. Since they were
malloc()ed (check for malloc failure and abort, too, btw) this was
likely not exploitable, but it is best to be safe.

Submitted by: kris
Review timeout: security-officer

END