Re: User access & security

From: Mark <mark@xxxxxxxxxxxxxxxxxxxxxxxxx>
Date: Tue, 02 Oct 2007 23:21:07 +1000

Mark wrote:

This is a question related to my next post.

If there is a user with non-root access to their account, we are dependent on their having a good password to ward off too much nasty activity.

I am told that it is fairly easy with user access to install a rootkit of some sort and totally compromise the system.

Now it seems to me that if this user is careless with this password, then the whole server is at risk. How true is this? Doesn't this weaken Linux to such an extent that any user access at all is guaranteed to bring down the server.

If that is the case, what do ISPs do, with their thousands of ordinary users? What does anybody do?

I ask this because I have inadvertently left an account open with a trivial password which somebody has stumbled into. (It has since been closed, but the question remains).

Thanks,

Mark

Thanks for your responses. I'll have to mull over them for a bit ...

Mark
.

References:
- User access & security
  - From: Mark

Prev by Date: Re: Phishing Attempt
Next by Date: Re: Phishing Attempt
Previous by thread: Re: User access & security
Next by thread: Re: User access & security
Index(es):
- Date
- Thread

Relevant Pages

Re: Re-Post - "the trust relationship between this workstation and the
... "the trust relationship between this workstation and the primary domain ... only problem is adding a new user account on the station. ... Client computer must use STRICTLY the INTERNAL DNS server which can ... Attr: subschemaSubentry ...
(microsoft.public.windows.server.active_directory)
Re: Same question, still no answer!!!
... Sounds then like we are all paying for a feature set only large companies ... The "proxy server" pc is actually an older box stuffed ... Expectation #1) keep the ethernet more or less as is. ... The kids account would be ...
(microsoft.public.windowsxp.basics)
Re: Re-Post - "the trust relationship between this workstation and the
... "the trust relationship between this workstation and the primary domain ... only problem is adding a new user account on the station. ... This would be on the DNS server 172.20.100.2 ... Attr: subschemaSubentry ...
(microsoft.public.windows.server.active_directory)
Sending email to mydomain.com
... server will appear as undeliverable. ... This happens because you are using the POP3 connector... ... an NDR when an account doesn't exist). ... >different from the user account names for the exchange ...
(microsoft.public.windows.server.sbs)
Re: Basic Authentication + IIS 5 + Windows 2000 + Frontpage 2002 = failure?
... Everytime I attempt to login under Basic Authentication, ... IUSR_blah account. ... the anonymous user impersonated by the IIS Server is the ... > Event Viewer Security log. ...
(microsoft.public.inetserver.iis.security)