Re: Linux OpenExchange - cleartext rootpw in swap

From: Joshua Goodall (joshua_at_myinternet.com.au)
Date: 09/03/04

Next message: Sune Kloppenborg Jeppesen: "[ GLSA 200409-07 ] xv: Buffer overflows in image handling"

Previous message: fabio: "Dynalink routers backdoor?"
Maybe in reply to: Valdis.Kletnieks_at_vt.edu: "Re: Linux OpenExchange - cleartext rootpw in swap"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

To: bugtraq@securityfocus.com
Date: Fri, 3 Sep 2004 16:02:26 +1000

On Wed, 1 Sep 2004 04:48 am, Rainer Duffner wrote:
> Well, if the server is "rooted", as you like to put it, there's
> little point in gaining the root-password anyway, isn't it ?

Use your imagination. People frequently reuse passwords on other
machines. Even root passwords.

Joshua

-- 
Joshua Goodall <joshua@myinternet.com.au>
Solutions Architect / Principal Security Architect
myinternet Limited.

application/pgp-signature attachment: stored

Next message: Sune Kloppenborg Jeppesen: "[ GLSA 200409-07 ] xv: Buffer overflows in image handling"

Previous message: fabio: "Dynalink routers backdoor?"
Maybe in reply to: Valdis.Kletnieks_at_vt.edu: "Re: Linux OpenExchange - cleartext rootpw in swap"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]