Hello Rudi, On Tue, 2012-01-03 at 11:14 +0200, Rudi Ahlers wrote: > How does something like c99shell allow a local user (not root) to read > the /etc/shadow file? I do not vouch for every app that is written to break good security practices. Try $ ls -l /etc/shadow If the tool you are using allows normal users access to /etc/shadow it is using some sort of root privileges, either it's a suid tool (ouch) or it needs entries in /etc/sudoers (visudo). In either case, I cannot think of a valid reason to allow normal users access to this file. http://tldp.org/HOWTO/Shadow-Password-HOWTO.html for more information on shadow passwords. Regards, Leonard. -- mount -t life -o ro /dev/dna /genetic/research _______________________________________________ CentOS mailing list CentOS@xxxxxxxxxx http://lists.centos.org/mailman/listinfo/centos
Re: an actual hacked machine, in a preserved state
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
- To: CentOS mailing list <centos@xxxxxxxxxx>
- Subject: Re: an actual hacked machine, in a preserved state
- From: Leonard den Ottolander <leonard@xxxxxxxxxxxxxxxxx>
- Date: Tue, 03 Jan 2012 11:01:01 +0100
- Delivered-to: centos@xxxxxxxxxx
- In-reply-to: <sig.134989c59e.CAAj3DjncFuZOvDeY2FFQAGGRkU4LpgV4hjLVR6ZvyLa9UzTiXA@mail.gmail.com>
- References:
- an actual hacked machine, in a preserved state
- From: Bennett Haselton
- Re: an actual hacked machine, in a preserved state
- From: Craig White
- Re: an actual hacked machine, in a preserved state
- From: Leonard den Ottolander
- Re: an actual hacked machine, in a preserved state
- From: Rudi Ahlers
- an actual hacked machine, in a preserved state
- Prev by Date: phpmyadmin issue
- Next by Date: Antwort: phpmyadmin issue
- Previous by thread: Re: an actual hacked machine, in a preserved state
- Next by thread: Re: an actual hacked machine, in a preserved state
- Index(es):
 |