Archives
Archives
| From: | William Kenworthy <billk@×××××××××.au> | ||
|---|---|---|---|
| To: | bryank@××××××.edu | ||
| Cc: | gentoo-security@l.g.o | ||
| Subject: | Re: [gentoo-security] new ssh worm? | ||
| Date: | Tue, 27 Jul 2004 23:34:31 | ||
| Message-Id: | 1090971233.10356.8.camel@rattus.Localdomain | ||
| In Reply to: | Re: [gentoo-security] new ssh worm? by bryank@cs.uri.edu | ||
| 1 | Is there an advantage forcing what would be a common user name to |
| 2 | /dev/null? If a program were to add a guest account to the password |
| 3 | file, and one already exists that is "nullified", this may be a security |
| 4 | advantage. |
| 5 | |
| 6 | BillK |
| 7 | |
| 8 | On Wed, 2004-07-28 at 07:25, bryank@××××××.edu wrote: |
| 9 | > It is in the default /etc/passwd from the rc-scripts-*.tar.bz2 in |
| 10 | > baselayout. |
| 11 | ... |
| 12 | > why, I'd recommend removing it. |
| 13 | > |
| 14 | > --Kevin |
| 15 | > |
| 16 | |
| 17 | |
| 18 | |
| 19 | -- |
| 20 | gentoo-security@g.o mailing list |
| Subject | Author |
|---|---|
| Re: [gentoo-security] new ssh worm? | Rui Pedro Figueira Covelo <rpfc@××××××××××××.pt> |