[8688] in bugtraq

home help back first fref pref prev next nref lref last post

RealSystem passwords

daemon@ATHENA.MIT.EDU (Guy Cohen)
Thu Dec 10 13:27:02 1998

Date: 	Thu, 10 Dec 1998 19:59:28 +0200
Reply-To: Bugtraq List <BUGTRAQ@NETSPACE.ORG>
From: Guy Cohen <guy@SPICE.ORG.IL>
To: BUGTRAQ@NETSPACE.ORG
In-Reply-To:  <Pine.SUN.4.01.9812101022470.29279-100000@dfw.nationwide.net>

-----BEGIN PGP SIGNED MESSAGE-----


Hi,

While installing the evaluation copy of RealSystem G2 server,
you have to enter an admin username and password.
The password is entered in clear text. not only this, it is writen
to the conf file in clear text. not only this,
the file is mode 644.

The quick fix ofcource is chmod 600 the file.


Reg.
Guy Cohen.

-----BEGIN PGP SIGNATURE-----
Version: PGPfreeware 5.0i for non-commercial use
Charset: noconv

iQCVAwUBNnAMHu+apSPwRBL5AQE+DAQAgu7V5Ap5nefpog11EVqhzx1+c6SxbjCJ
naGgyEY5Nwdv/hzqYGmSlgH1zgvJ6NqXKx7Oi0IOHno7d92Gpe4FHa4PLJVAveQt
aklpeFbV3b4W3BswtFjX7v2rewCzY17XymHjo+MmfmDl3i8fDozim4yFjCFPzygS
xM6F3ZULj9w=
=Sxav
-----END PGP SIGNATURE-----

home help back first fref pref prev next nref lref last post