On Wed, May 02, 2001 at 02:37:43AM -0400, Statux a ecrit:
>
> I thought that root logins were the reason why people recommend ssh in
> the first place. <shrug> Is there something I don't know? :)
This is just a guess but it must be easier to "steal" the password
passed at the beginning of the session than to steal the one passed
at the su prompt (since you don't know when the user types su).
Having the crypted password allows you to find the uncrypted version
by brute force.
Emmanuel
_______________________________________________
Redhat-list mailing list
[EMAIL PROTECTED]
https://listman.redhat.com/mailman/listinfo/redhat-list
