Date: Fri, 16 Oct 1998 16:13:22 +0200 From: Marius Bendiksen <Marius.Bendiksen@scancall.no> To: andrew@squiz.co.nz, security@FreeBSD.ORG Subject: Re: X allows ordinary user to read first line of any file Message-ID: <3.0.5.32.19981016161322.00920830@mail.scancall.no> In-Reply-To: <Pine.BSF.4.01.9810161756550.706-100000@aniwa.sky>
next in thread | previous in thread | raw e-mail | index | archive | help
>I'm sure there's other files where this can be a problem, but in the case >of the password file it seems wise to have a dummy entry as the first line >of the master.passwd file. You could of course just delete the file, if you're concerned that they're going to crack the password. If you enforce a sound password policy, they won't be able to get anything from that. --- Marius Bendiksen, IT-Trainee, ScanCall AS To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?3.0.5.32.19981016161322.00920830>