Re: /.iiim/auth/passwd on Solaris 8
From: Thomas Lindsay (firstname.lastname@example.org)
Date: Wed, 9 Apr 2003 12:02:25 -0500 (CDT) From: Thomas Lindsay <email@example.com> To: Reg Quinton <firstname.lastname@example.org>
Yes, but this still begs the question, why does it need to store an
encrypted password in the .iiim/auth/passwd file? What is this password?
Is it a cached copy of the user's password? This would make the user's
password available to a brute-force crack if that's what it's storing.
I've written to my Sun rep asking about this, so we'll see what she writes
back. I'll post her response if it's helpful.
Social Science Research Facility
University of Minnesota
On Wed, 9 Apr 2003, Reg Quinton wrote:
> [9:11am ego] pkginfo -l SUNWxi18n
> PKGINST: SUNWxi18n
> NAME: X Window System Internationalization Common Package
> CATEGORY: system
> ARCH: sparc
> VERSION: 4.0,REV=18.104.22.168
> BASEDIR: /usr
> VENDOR: Sun Microsystems, Inc.
> DESC: Run time library loaded by libX11.so, and provides input and
> output capability for internationalized X Window applications.
> PSTAMP: joy20021212122149
> INSTDATE: Jan 20 2003 05:05
> HOTLINE: Please contact your local service provider
> STATUS: completely installed
> FILES: 11 installed pathnames
> 4 shared pathnames
> 4 directories
> 671 blocks used (approx)