From: | William Kenworthy <billk@×××××××××.au> | ||
---|---|---|---|
To: | bryank@××××××.edu | ||
Cc: | gentoo-security@l.g.o | ||
Subject: | Re: [gentoo-security] new ssh worm? | ||
Date: | Tue, 27 Jul 2004 23:34:31 | ||
Message-Id: | 1090971233.10356.8.camel@rattus.Localdomain | ||
In Reply to: | Re: [gentoo-security] new ssh worm? by bryank@cs.uri.edu |
1 | Is there an advantage forcing what would be a common user name to |
2 | /dev/null? If a program were to add a guest account to the password |
3 | file, and one already exists that is "nullified", this may be a security |
4 | advantage. |
5 | |
6 | BillK |
7 | |
8 | On Wed, 2004-07-28 at 07:25, bryank@××××××.edu wrote: |
9 | > It is in the default /etc/passwd from the rc-scripts-*.tar.bz2 in |
10 | > baselayout. |
11 | ... |
12 | > why, I'd recommend removing it. |
13 | > |
14 | > --Kevin |
15 | > |
16 | |
17 | |
18 | |
19 | -- |
20 | gentoo-security@g.o mailing list |
Subject | Author |
---|---|
Re: [gentoo-security] new ssh worm? | Rui Pedro Figueira Covelo <rpfc@××××××××××××.pt> |