[36381] in bugtraq
Re: Linux OpenExchange - cleartext rootpw in swap
daemon@ATHENA.MIT.EDU (Joshua Goodall)
Fri Sep 3 14:01:07 2004
From: Joshua Goodall <joshua@myinternet.com.au>
To: bugtraq@securityfocus.com
Date: Fri, 3 Sep 2004 16:02:26 +1000
In-Reply-To: <26305.84.128.64.126.1093978130.squirrel@84.128.64.126>
MIME-Version: 1.0
Content-Type: multipart/signed;
boundary="nextPart3019555.lHLGQPBymC";
protocol="application/pgp-signature";
micalg=pgp-sha1
Content-Transfer-Encoding: 7bit
Message-Id: <200409031602.27209.joshua@myinternet.com.au>
--nextPart3019555.lHLGQPBymC
Content-Type: text/plain;
charset="iso-8859-1"
Content-Transfer-Encoding: quoted-printable
Content-Disposition: inline
On Wed, 1 Sep 2004 04:48 am, Rainer Duffner wrote:
> Well, if the server is "rooted", as you like to put it, there's
> little point in gaining the root-password anyway, isn't it ?
Use your imagination. People frequently reuse passwords on other=20
machines. Even root passwords.
Joshua
=2D-=20
Joshua Goodall <joshua@myinternet.com.au>
Solutions Architect / Principal Security Architect
myinternet Limited.
--nextPart3019555.lHLGQPBymC
Content-Type: application/pgp-signature
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.5 (GNU/Linux)
iD8DBQBBOAjzo8kg3R/NoUQRAjNkAKDMp/+6HR/4YtjJ5DqqpvT1/36dlACgtM1B
sp8fgJ5O+bzf99x2qEEEnWg=
=F8RV
-----END PGP SIGNATURE-----
--nextPart3019555.lHLGQPBymC--
