Displaying 5 results from an estimated 5 matches for "unpassword".
Did you mean:
npassword
2013 May 24
1
Utility to scan for unpassworded SSH privkeys?
...r private keys with passwords.?
-------- Original message --------
From: Dan Kaminsky <dan at doxpara.com>
Date: 05/23/2013 5:39 PM (GMT-08:00)
To: "Dan Mahoney, System Admin" <danm at prime.gushi.org>
Cc: openssh-unix-dev at mindrot.org
Subject: Re: Utility to scan for unpassworded SSH privkeys?
Effectively nobody passphrases their ssh keys.? They're used as a way to *suppress* password entry in the real world -- use this, and things just work rather than poking you each time.
Sent from my iPhone
On May 23, 2013, at 5:19 PM, "Dan Mahoney, System Admin" &l...
2013 May 24
5
Utility to scan for unpassworded SSH privkeys?
Hey all,
Let's make an assumption:
1) I am a root user on a system.
2) I don't want said system being used as a jumping-off point if either a
user account or the root account is compromised.
Given an unencrypted private key, plus a known_hosts file, plus
bash_history, it's a pretty easy avenue of attack once you're in the front
door. And it's happened before*.
Thus,
2004 Feb 21
2
a story of compromise and an idea
...ines which I have an account on which was
recently compromised. the machines have thousands of users and the only
access is via ssh.
via some mechanism (probably a weak password) the attacker was able to
compromise a single account and use a local-root exploit to hijack lots
of ssh-agents and any unpassword protected keys. they next tried to
repeat the process for every machine in the 'known_hosts' file for each
compromised account.
of course, all this was automated and they quickly built a nice spanning
tree of cracked machines. (fortunately, I was paranoid enough to avoid
being hit, but ma...
2016 Nov 17
2
Samba4: use Posix-ACLs only? (ext4 - NFS4+CIFS - Fileserver)
I try to set up a Samba4-based Fileserver in an Samba3-DC enviroment.
Filesystem is ext4, CIFS + NFS4 should be provided. The same ACLs should
be used over both protocols.
With Samba 3 this was possible (using POSIX 1003.1e DRAFT 17 ACLs only)
. How can I do the same with Samba 4 ?
Posix-ACLs set on the server with setfacl are recogniced on a
windows-client. But every change I do on a
2003 Dec 01
0
No subject
...as part of the backup procedure he already has running on his
server.
I am just guessing here, but I am sure that someone will correct me if I am
wrong... You will need to create a share on each PC (say the C:\My
Documents folder), with password access (please DON'T let your users set up
UNpassworded shares!). If you are running NT or 2K, I guess you could
access it with administrator privs, and access the C$ administrative share.
The other day someone here on the list said that with W2k you can map just
a folder buried within the share, but how would that work?!? (Sounds like a
securi...