On Wed, Mar 15, 2000 at 11:07:21PM +0100, Michael Thaler wrote:
> It is a long establish practice with linux and other unices not to tell
> users who want to login, if there username is valid or not or if the
> password is wrong.

I guess that this is only laziness on their part. It is easier to write one
error message than two.

If the authors of those programs really thought that this would increase
system security, they didn't understand a lot about it.

Thanks,
Marcus

-- 
`Rhubarb is no Egyptian god.' Debian http://www.debian.org Check Key server 
Marcus Brinkmann              GNU    http://www.gnu.org    for public PGP Key 
[EMAIL PROTECTED],     [EMAIL PROTECTED]    PGP Key ID 36E7CD09
http://homepage.ruhr-uni-bochum.de/Marcus.Brinkmann/       [EMAIL PROTECTED]

Reply via email to