On Fri, Mar 16, 2007 at 06:07:07PM +0100, Grzegorz B?ach wrote: > When you do buffer-overflow in passwd you can exec any code with root > priviledges, > but with tcb you must change root password to run code with root priviledges, > and administrator will see this faster.
Who said that I want to change the root password? I can easily just create a new user with uid 0, login remotely as that and change the entry back. Very little log pollution and that can be easily taken care of. Joerg
