David J. DeWolfe mentioned concerns about disabling /sbin/it, as it is used
in patch and/or subset installations and OS upgrades. You should disable
/sbin/it on any available, running, multi-user machine; you may wish to
re-enable it just before doing those installations (and you should check
that your machine is "clean"...), then disable it again.
Or you may wait for Compaq to provide an official patch... but note that
leaving /sbin/it enabled and un-patched is as good as handing out the root
password to all users.
Remember to disable rmtmpfiles too.
Cheers,
Paul Szabo - psz_at_maths.usyd.edu.au
http://www.maths.usyd.edu.au:8000/u/psz/
School of Mathematics and Statistics University of Sydney 2006 Australia
Received on Thu Dec 14 2000 - 22:35:21 NZDT