Re: Is there such a distro?
Peter Glassenbury (CSSE) wrote: Sorry not even at a university lab... If someone wants to brute force our root account, they obviously have not enough work to do. Our logging should find the attempts... Like Volker, I have yet to be convinced of the point of typing sudo in front of all the commands I want to run as root. When it becomes reflex, you are going to make the same mistakes as if you login as root. True, because the attack would have to be carried out manually, so you could just pull out the crow bar and stand outside the lab when it happens, not to mention that it would take forever to reach, say, 100 attempts, which would hardly make a dent (so to speak). There are pros and cons of either choice. For me, it's pointless to have a root password, because I can never remember what it is, and I usually only want to execute one command as root at a time, anyway. But that's just my preference. I can imagine that Pete boots the lab machines into single-user mode, for which he needs the root password, to diagnose problems. Even if that was disabled, there could still only be one password for admins: the BIOS password (for booting from a CD, for example). By the way, it's only five extra keystrokes to prefix a command with sudo . --Aidan signature.asc Description: PGP signature Part 3 Description: micalg/pgp-sha1
Re: Is there such a distro?
On Thu, Jun 3, 2010 at 10:04 AM, aidal...@no8wireless.co.nz wrote: Peter Glassenbury (CSSE) wrote: Sorry not even at a university lab... If someone wants to brute force our root account, they obviously have not enough work to do. Our logging should find the attempts... Like Volker, I have yet to be convinced of the point of typing sudo in front of all the commands I want to run as root. When it becomes reflex, you are going to make the same mistakes as if you login as root. True, because the attack would have to be carried out manually, so you could just pull out the crow bar and stand outside the lab when it happens, not to mention that it would take forever to reach, say, 100 attempts, which would hardly make a dent (so to speak). There are pros and cons of either choice. For me, it's pointless to have a root password, because I can never remember what it is, and I usually only want to execute one command as root at a time, anyway. But that's just my preference. I can imagine that Pete boots the lab machines into single-user mode, for which he needs the root password, to diagnose problems. Even if that was disabled, there could still only be one password for admins: the BIOS password (for booting from a CD, for example). physical access means root access!
RE: Another old SCSI request
Hi, I have got a couple of compaq/hp dlts that's are se, may even be able to find a couple of tapes for them. Also got a scanner that's about 8 years old - never been out of the box in garage if you are interested. Maurice -Original Message- From: Andre Renaud [mailto:an...@bluewatersys.com] Sent: Wednesday, 2 June 2010 1:12 p.m. To: linux-users@it.canterbury.ac.nz Subject: Another old SCSI request Hello, A few months ago I asked on this list if anyone had any older SCSI gear. I received some responses and am now sorted on that front. However now I am on the look-out for some older SCSI differential (HVD) equipment. Either a hard disk or a tape drive would be perfect, but failing that I'd accept any HVD device at all. Does anyone have any of these floating around? Please contact me off-list if you do. I hope this isn't too far off topic - it peripherally relates to Linux via the Linux-based SCSI device we are developing. Regards, Andre
