Re: What is this? "john" under cron.d??? Debian Squeeze

To: Jamie M <jamiemartell@northwestel.net>
Cc: debian-security@lists.debian.org
Subject: Re: What is this? "john" under cron.d??? Debian Squeeze
From: Javier Fernandez-Sanguino <jfs@computer.org>
Date: Mon, 12 Nov 2012 09:03:30 +0100
Message-id: <[🔎] CAB9B7UsvFspxGFgZm8Ln3yHxP=Qvqjr48CEuQ=M6zyXGWvnn6g@mail.gmail.com>
In-reply-to: <50A0650B.9080809@northwestel.net>
References: <50A0650B.9080809@northwestel.net>

On 12 November 2012 03:55, Jamie M <jamiemartell@northwestel.net> wrote:
> Just noticed an unfamiliar file in my Debian Squeeze: is called "john" found
> in cron.d.
>
> Does anyone know if this is a security risk, when all of a sudden I notice
> this file?
>
> Thank you and anything anyone can add is appreciated.
>

As you can see yourself if you search the package database (see [1])
the John password cracking program installs a 'john' task in
/etc/cron.d in order to test the system user's password strength every
so often.

There is nothing to worry about.

Next time you are worried about a file in your system, try using 'dpkg
-S <filename>' to find which package has installed it there.

Regards

Javier

[1] http://packages.debian.org/search?searchon=contents&keywords=john&mode=exactfilename&suite=stable&arch=any

Reply to:

Prev by Date: Re: flashplugin-nonfree : newer Flash Player
Next by Date: Re: [SECURITY] [DSA 2573-1] radsecproxy security update
Previous by thread: Re: flashplugin-nonfree : newer Flash Player
Next by thread: Re: [SECURITY] [DSA 2573-1] radsecproxy security update
Index(es):
- Date
- Thread