Date: Fri, 5 Mar 2004 05:26:45 -0800 From: Kris Kennaway <kris@obsecurity.org> To: Kris Kennaway <kris@obsecurity.org> Cc: Jonathan Neill <TYR124840@tyler.net> Subject: Re: Binary file created in / with same name as root password, seemingly sporadically Message-ID: <20040305132645.GA15134@xor.obsecurity.org> In-Reply-To: <20040305131149.GC14874@xor.obsecurity.org> References: <opr4cvwdzgytod5m@smtp.tyler.net> <200403042318.39213.bob88@bobj.org> <000c01c402ad$2ae03130$6401a8c0@jon> <20040305131149.GC14874@xor.obsecurity.org>
next in thread | previous in thread | raw e-mail | index | archive | help
--FL5UXtIhxfXey3p5 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline Content-Transfer-Encoding: quoted-printable On Fri, Mar 05, 2004 at 05:11:49AM -0800, Kris Kennaway wrote: > On Fri, Mar 05, 2004 at 06:27:04AM -0600, Jonathan Neill wrote: > > Why yes, as a matter of fact it is^H^Hwas... > >=20 > > Something special about it? >=20 > Only that it's a spectacularly bad password that happens to coincide > with an unrelated FreeBSD file. I hope your new root password isn't > "COPYRIGHT" or "kernel" :-) You know, there's something deeply ironic about using the low-entropy word "entropy" for what should be a high-entropy password, then reducing the entropy still further by posting to a public mailing list with a clue to what it is. Moreover, your confusion surrounds the /entropy file, which is used by the system to store high-quality entropy data for seeding purposes. :-) Kris0`&$31U2A?7+_0)&5SQ%,HK2G-+[;T_DP),)[/#N\WP2.VP2P,EME8BZDGF --FL5UXtIhxfXey3p5 Content-Type: application/pgp-signature Content-Disposition: inline -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.2.4 (FreeBSD) iD8DBQFASIAVWry0BWjoQKURAmL0AJ4kxLglr2JWLsjSlZUy7rGhwbqpOQCeI7zM Q66CcSQrkBg078xCJvm6WkA= =kllZ -----END PGP SIGNATURE----- --FL5UXtIhxfXey3p5--
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20040305132645.GA15134>