[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [[cobalt-users] Server Hacked?]

Subject: Re: [[cobalt-users] Server Hacked?]
From: Rik Thomas <rikt@xxxxxxxxxxxx>
Date: Tue Feb 15 14:10:43 2000

Shadow passwords doesn't buy you security, it just buys you time.  The
only thing shadow passwords protect against really is the infamous 'cat
/etc/passwd'  an insecure password is an insecure password.

You obviously open yourself up if you allow telnet, but to be competitive
and offer good well rounded service you have to offer telnet.  That being
said...we have hundreds of domains and only offer telnet to 3 of them.  On
the colocated servers here that we build for folks (non raq servers) we
disable telnet and fire up ssh for them and point them in the general
direction of an ssh client. 

On Mon, 14 Feb 2000, Jeff Lasman wrote:

> At 06:00 PM 2/13/00 +0100, you wrote:
> 
> >Just one question: The passwd file is marked as world-readable. Should I
> >remove this flag in order to improve security ?
> 
> Not if you want the linux operating system running your RaQ to keep working 
> <wry grin>.
> 
> RaQ2 and RaQ3 models come with shadow passwords by default; someone 
> recently wrote on this list that the RaQ1 doesn't.
> 
> For security, you really need to have shadow passwords implemented.
> 
> Jeff
> 
> --
> Jeff Lasman <jblists@xxxxxxxxxxxxx>

Rik Thomas CTO rikt@xxxxxxxxxxxx
Delaware.Net, Inc. http://www.delaware.net
P:302.736.5515 F:302.736.5945 ICQ:879956

Check out our Tucows Linux Mirror
http://delaware.linux.tucows.com

References:
- Re: [[cobalt-users] Server Hacked?]
  - From: Jeff Lasman

Prev by Date: Re: [cobalt-users] catch all address
Next by Date: [cobalt-users] what to backup
Previous by thread: Re: [[cobalt-users] Server Hacked?]
Next by thread: Re: [[cobalt-users] Server Hacked?]

Sun Cobalt Users Message Index

Sun Cobalt Users Thread Index