Re: server security :: user accounts, ssh, passphrases, etc.
Russell L. Harris <rlharris@oplink.net>:
>
> In other words, if I were to give you free access to my server, so
> that you could inspect all the system files, would you be able to
> deduce the password and passphrase, which are the same as those which
> I use on the desktop machine?
You just described root. Yes, root could do that. Install a
keylogger and wait for you to login. If you never do, I'm stuck
running crack against shadow.
--
Any technology distinguishable from magic is insufficiently advanced.
(*) http://blinkynet.net/comp/uip5.html Linux Counter #80292
- - http://www.faqs.org/rfcs/rfc1855.html Please, don't Cc: me.
Reply to: