VanLUG Email Archive

VanLUG Mailing List
Re: Comments and Complaints about Red Hat Linux?

A Z (arek_z@yahoo.com)
Thu, 11 Mar 1999 19:13:01 -0800 (PST)

• Next message: Curt Sampson: "Re: Sorry for the Spam, but..."
• Previous message: Ted Powell: "Re: More concerns about Red Hat - PC Week"
• In reply to: Curt Sampson: "Re: More concerns about Red Hat - PC Week"
• Next in thread: Curt Sampson: "Re: Comments and Complaints about Red Hat Linux?"
• Reply: Curt Sampson: "Re: Comments and Complaints about Red Hat Linux?"

Yes, it's a concern (small though) cause everyone has read access to
/etc/passwd now there is a user that has "no passwd" on the box.
_anyone_ can see that.

If it's shadowed, everyone in that list has a * so you wouldn't know.
If it wasn't a concern, then why have shadowed passwds?

        -arek

---Curt Sampson <cjs@cynic.net> wrote:
>
> On Sun, 7 Mar 1999, A Z wrote:
>
> > One thing (however small) is by default the passwords aren't
shadowed.
>
> That's not even a small concern. I have no idea why Linux systems
> out there don't do this; on my Unix systems (*BSD, Solaris,
> Digital^WTrue 64 Unix, etc.) passwords are *always* shadowed, and
> there's no way even to turn this off.
>
> cjs
> --
> Curt Sampson <cjs@cynic.net> 604 801 5335 De gustibus, aut bene
aut nihil.
> The most widely ported operating system in the world:
http://www.netbsd.org
>
>

_________________________________________________________
DO YOU YAHOO!?
Get your free @yahoo.com address at http://mail.yahoo.com

• Next message: Curt Sampson: "Re: Sorry for the Spam, but..."
• Previous message: Ted Powell: "Re: More concerns about Red Hat - PC Week"
• In reply to: Curt Sampson: "Re: More concerns about Red Hat - PC Week"
• Next in thread: Curt Sampson: "Re: Comments and Complaints about Red Hat Linux?"
• Reply: Curt Sampson: "Re: Comments and Complaints about Red Hat Linux?"