Home page logo

fulldisclosure logo Full Disclosure mailing list archives

RE: [in] Re: IE is just as safe as FireFox
From: "joe" <mvp () joeware net>
Date: Sat, 20 Nov 2004 09:20:57 -0500

I agree with your initial comment, they can both be changed. I also agree
they both do little.

I don't agree that the hardcoding in the source does anything for you. 

Let me choose if I even want a browser loaded thanks!


-----Original Message-----
From: full-disclosure-admin () lists netsys com
[mailto:full-disclosure-admin () lists netsys com] On Behalf Of Frank Knobbe
Sent: Friday, November 19, 2004 10:42 PM
To: Jeremy Davis
Cc: full-disclosure () lists netsys com
Subject: Re: [in] Re: [Full-disclosure] IE is just as safe as FireFox

On Fri, 2004-11-19 at 20:40, Jeremy Davis wrote:
Are you able to change root's name in nix? Why not if the answer is no?
(Things would break right? UID 0?) Knowing the account name is 
two-thirds of the battle.
In windows it's fairly easy to change the admin name.
Not a professional here just curious...

You can change the name of the root account in Unix, just like the
Administrator account in Windows.

But you can not change the UID of the root account (0) just like you can not
change the SID of the Administrator account (500).

I argue that changing the account name in Unix does as little or much as
changing the account name in Windows. If you have access to the system you
can easily find the account name of the UID 0 account, just as easily as you
can figure out the name of the SID x-500 account.

The difference is that you can change and hard code that change in the
source of Unix (at least with those that you have the source for, Linux,
*BSD, whatever). Can you do that with Windows?


Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html

  By Date           By Thread  

Current thread:
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]