[Uaflug] Apology

Doug Knight doug.knight at uaf.edu
Thu Apr 26 13:14:30 AKDT 2007 

Walker's right.  For every report I see about a remote exploit, I see at
least five more that require access to a local account.  If you're going
to leave an account unprotected, you're begging the script kiddies to use
it.  With all of the scripts I see hitting my boxes, trying to find
accounts with no passwords, I wouldn't think it would take very long before
your box got popped.

Doug

Walker Wheeler wrote:
> 
> You would probably want the account locked for any remote service. And
> the biggest thing to worry about would of course be privilege escalation.
> 
> And for locking someone out of cron /etc/cron.deny (man crontab) should
> do it on some systems. The username must be listed there. FTP and samba
> also have similar lockout mechanism.
> 
> 
> 
> Walker Wheeler
> ==========================================
> fxwsw at uaf.edu
> 907.474.7173
> University of Alaska - Fairbanks
> OIT Core Applications Services
> Systems Programmer
> ==========================================
> 
> 
> Paul Swanson wrote:
>> Well, there are some things I miss about XP, like... uh... wait. No.
>> Nothing.
>>
>> In an attempt to make this a learning experience, let me figure out
>> how to set up a guest account in KDE.
>>
>> First, create a guest account. Go to System Settings | User Management
>> | Administrator Mode | New
>>
>> enabled, name: guest, no password.
>>
>> Now go to the K menu, click Switch User, and Lock Current & Start New
>> Session. The sessions will be in different virtual terminals
>> (Ctrl+alt+f7, etc).
>>
>> A question of security; is a guest account with no password (or an
>> essentially worthless password like 'guest') a risk? If it doesn't
>> have root access, what could be exploited?
>>
>> -Paul
>>
>> On 4/26/07, Seth de l'Isle <szoth at ubertechnique.com> wrote:
>>> But which is the more embarrassing in the context of the Linux Users'
>>> Group: Making an obnoxious post while drunk, or getting
>>> derfed[1]?
>>>
>>> Glad to hear that you aren't the kind to get so snookered that you
>>> develop feelings for XP! ;)
>>>
>>> [1] http://home.att.net/~srschmitt/jargonfile/jargon_file-173.html
>>>
>>> On Thu, Apr 26, 2007 at 10:30:17AM -0800, Paul Swanson wrote:
>>>> That last message was not me. The security of my machine was
>>>> compromised (via me not locking my machine when I was away).
>>>>
>>>> Sorry,
>>>> Paul
>>> _______________________________________________
>>> uaflug mailing list
>>> uaflug at linux0.cs.uaf.edu
>>> http://linux0.cs.uaf.edu/mailman/listinfo/uaflug
>>>
>> _______________________________________________
>> uaflug mailing list
>> uaflug at linux0.cs.uaf.edu
>> http://linux0.cs.uaf.edu/mailman/listinfo/uaflug
> _______________________________________________
> uaflug mailing list
> uaflug at linux0.cs.uaf.edu
> http://linux0.cs.uaf.edu/mailman/listinfo/uaflug

More information about the uaflug mailing list