[TriLUG] Ubuntu - great security - you'll love this
Ben Pitzer
bpitzer at gmail.com
Mon Mar 13 08:57:28 EST 2006
My question is why it's storing an unencrypted password in file space at
all, at any point. Seems like a Bad Idea (tm) to me, even if it is only
during the install.
Regards,
Ben Pitzer
On 3/13/06, crimsun at fungus.sh.nu <crimsun at fungus.sh.nu> wrote:
>
> On Mon, Mar 13, 2006 at 07:04:06AM -0500, Magnus wrote:
> > The root password from the first user registred by Breezy can be found
> by
> > any user by reading the file /var/log/installer/cdebconf/questions.dat
>
> Pretty ugly. And of course, fixed [0].
>
> [0] http://www.ubuntu.com/usn/usn-262-1
> --
> Daniel T. Chen crimsun at ubuntu.com
> GPG key: www.sh.nu/~crimsun/pubkey.gpg.asc
>
>
> --
> TriLUG mailing list : http://www.trilug.org/mailman/listinfo/trilug
> TriLUG Organizational FAQ : http://trilug.org/faq/
> TriLUG Member Services FAQ : http://members.trilug.org/services_faq/
>
>
>
More information about the TriLUG
mailing list