Christopher Sawtell wrote:
On Fri, 22 Apr 2005 16:25, Steve Holdoway wrote:Sorry, brain fade. An overdose of 60Hz monitors brought on the usual migraine. /etc/passwd gives them a list of accounts to attack, which is a) pretty dire, and b) extremely difficult to quickly change.
The point is that everyone can read /etc/passwd and /etc/shadow,No, not /etc/shadow, unless they have 0wn3d the machine already, that's the whole point of the shadow mechanism. Some unix systems even have it readonly for root.
[EMAIL PROTECTED] ~ $ ls -l /etc/shadow -rw------- 1 root root 1333 Apr 17 16:41 /etc/shadow
--
C. S.
Cheers,
steve
