[TriLUG] Ubuntu - great security - you'll love this

William Sutton william at trilug.org
Mon Mar 13 09:01:18 EST 2006


<troll>
I thought Debian (and derived systems) were all about openness.  Why not 
make the password open too? :)
</troll>

-- 
William Sutton


On Mon, 13 Mar 2006, Ben Pitzer wrote:

> My question is why it's storing an unencrypted password in file space at
> all, at any point.  Seems like a Bad Idea (tm) to me, even if it is only
> during the install.
> 
> Regards,
> Ben Pitzer
> 
> On 3/13/06, crimsun at fungus.sh.nu <crimsun at fungus.sh.nu> wrote:
> >
> > On Mon, Mar 13, 2006 at 07:04:06AM -0500, Magnus wrote:
> > > The root password from the first user registred by Breezy can be found
> > by
> > > any user by reading the file /var/log/installer/cdebconf/questions.dat
> >
> > Pretty ugly. And of course, fixed [0].
> >
> > [0] http://www.ubuntu.com/usn/usn-262-1
> > --
> > Daniel T. Chen            crimsun at ubuntu.com
> > GPG key:   www.sh.nu/~crimsun/pubkey.gpg.asc
> >
> >
> > --
> > TriLUG mailing list        : http://www.trilug.org/mailman/listinfo/trilug
> > TriLUG Organizational FAQ  : http://trilug.org/faq/
> > TriLUG Member Services FAQ : http://members.trilug.org/services_faq/
> >
> >
> >
> --
> TriLUG mailing list        : http://www.trilug.org/mailman/listinfo/trilug
> TriLUG Organizational FAQ  : http://trilug.org/faq/
> TriLUG Member Services FAQ : http://members.trilug.org/services_faq/
> 
> 



More information about the TriLUG mailing list