User access & security
- From: Mark <mark@xxxxxxxxxxxxxxxxxxxxxxxxx>
- Date: Mon, 01 Oct 2007 22:39:48 +1000
This is a question related to my next post.
If there is a user with non-root access to their account, we are dependent on their having a good password to ward off too much nasty activity.
I am told that it is fairly easy with user access to install a rootkit of some sort and totally compromise the system.
Now it seems to me that if this user is careless with this password, then the whole server is at risk. How true is this? Doesn't this weaken Linux to such an extent that any user access at all is guaranteed to bring down the server.
If that is the case, what do ISPs do, with their thousands of ordinary users? What does anybody do?
I ask this because I have inadvertently left an account open with a trivial password which somebody has stumbled into. (It has since been closed, but the question remains).
Thanks,
Mark
.
- Follow-Ups:
- Re: User access & security
- From: goarilla
- Re: User access & security
- From: Chris Cox
- Re: User access & security
- From: Mark
- Re: User access & security
- From: s. keeling
- Re: User access & security
- From: Moe Trin
- Re: User access & security
- Next by Date: Phishing Attempt
- Next by thread: Re: User access & security
- Index(es):
Relevant Pages
|
