Re: Compromise of the nobody account?
- From: mike3 <mike4ty4@xxxxxxxxx>
- Date: Sat, 26 Jan 2008 20:53:59 -0800 (PST)
On Jan 26, 5:52 pm, Grant <g_r_a_n...@xxxxxxxxxxx> wrote:
On Sat, 26 Jan 2008 16:13:46 -0800 (PST), mike3 <mike4...@xxxxxxxxx> wrote:
Hi.
How bad it is it if one can't trust the "nobody" account on a UNIX or
Unix-like system, and said account has been broken into and is being
used to access the system? Should one just dump the account, then? Is
it bad practice to leave the "nobody" account unguarded?
Huh? What can you do as 'nobody' without a shell?
So then I take that it's NOT a good idea to have a nobody account
with a shell on it, right? How much damage can a cracker do from a
nobody account that they've gotten into and that has a shell on it?
.
- Follow-Ups:
- Re: Compromise of the nobody account?
- From: Barry Margolin
- Re: Compromise of the nobody account?
- References:
- Compromise of the nobody account?
- From: mike3
- Re: Compromise of the nobody account?
- From: Grant
- Compromise of the nobody account?
- Prev by Date: Re: Compromise of the nobody account?
- Next by Date: Re: Compromise of the nobody account?
- Previous by thread: Re: Compromise of the nobody account?
- Next by thread: Re: Compromise of the nobody account?
- Index(es):
Relevant Pages
|
|
