From: htoaster@yabbs
To: panzer@yabbs
Subject: holes in free systems
Date: Mon Jan 31 20:21:08 1994

All systems come with holes.  While people are mentioning them in linux,
here is a pretty big one in any of the BSDs.  If people install the system
but never install the crypted password stuff (it is a seperate package
due to export restrictions, but trivial to install) it doesn't encrypt using
any method in /etc/passwd.master (the shadow file).  So if the account is 
*'ed out to make it not loginable you can just type * in the password
field...

most people use the security stuff though...

alex