Hi Eugene, > If an admin has /etc/shadow world-readable than he is in trouble almost > as bad as exploitable /usr/lib/authenticate ;-)
He sure is. But I'm not going to comment that further, otherwise I'd be venting at a certain ... vendor. ;o) > Not exactly right. /etc/passwd *should* be world readable. Outch ... yeah, of course you're right. Sorry, I spoke too soon. -- With best regards, Michael Stauber [EMAIL PROTECTED] Unix/Linux Support Engineer _______________________________________________ cobalt-security mailing list [EMAIL PROTECTED] http://list.cobalt.com/mailman/listinfo/cobalt-security
