Re: server security :: user accounts, ssh, passphrases, etc.

To: debian-user@lists.debian.org
Subject: Re: server security :: user accounts, ssh, passphrases, etc.
From: "s. keeling" <keeling@nucleus.com>
Date: Thu, 3 Apr 2008 14:43:21 +0200 (CEST)
Message-id: <[🔎] slrnfv9k79.f0k.keeling@phreaque.nucleus.com>
References: <[🔎] 20080402153335.GA22692@oplink.net> <[🔎] slrnfv88k8.f0k.keeling@phreaque.nucleus.com> <[🔎] 20080403013334.GC22692@oplink.net>

Russell L. Harris <rlharris@oplink.net>:
> 
>  In other words, if I were to give you free access to my server, so
>  that you could inspect all the system files, would you be able to
>  deduce the password and passphrase, which are the same as those which
>  I use on the desktop machine?

You just described root.  Yes, root could do that.  Install a
keylogger and wait for you to login.  If you never do, I'm stuck
running crack against shadow.


-- 
Any technology distinguishable from magic is insufficiently advanced.
(*)    http://blinkynet.net/comp/uip5.html      Linux Counter #80292
- -    http://www.faqs.org/rfcs/rfc1855.html    Please, don't Cc: me.

Reply to:

References:
- server security :: user accounts, ssh, passphrases, etc.
  - From: "Russell L. Harris" <rlharris@oplink.net>
- Re: server security :: user accounts, ssh, passphrases, etc.
  - From: "s. keeling" <keeling@nucleus.com>
- Re: server security :: user accounts, ssh, passphrases, etc.
  - From: "Russell L. Harris" <rlharris@oplink.net>

Prev by Date: How to create a local mirror from CD
Next by Date: Re: Question about perl organisation on disk and CPAN
Previous by thread: Re: server security :: user accounts, ssh, passphrases, etc.
Next by thread: Re: server security :: user accounts, ssh, passphrases, etc.
Index(es):
- Date
- Thread