Home page logo
/

fulldisclosure logo Full Disclosure mailing list archives

Re: Ubuntu 11.10 now unsecure by default
From: James Condron <james () zero-internet org uk>
Date: Thu, 17 Nov 2011 18:11:44 +0000


On 17 Nov 2011, at 17:50, Mario Vilas wrote:

The guest account has no password, but it's not possible to login remotely with ssh.

Thats because sshd file doesn't allow passwordless logins by default. It is, of course, changeable.


On Thu, Nov 17, 2011 at 5:28 PM, Dave <mrx () propergander org uk> wrote:
Hi,

What is the password for this guest account?
Is the password random generated?

Is remote access of any kind enabled by default for this guest account?

In what way is the guest account different from any of the half dozen or so other accounts(with the obvious exception 
of access rights)
created during a default Ubuntu install?

How insecure is it really?

I am not an Ubuntu expert so these are genuine questions, I am far to busy to research this at this time so I ask 
these questions in the hope
than an Ubuntu Guru comes forth and either allays all my/your/our fears(if they exist) or scares me/us into action.

regards
Dave



-- 
“There's a reason we separate military and the police: one fights the enemy of the state, the other serves and 
protects the people. When the military becomes both, then the enemies of the state tend to become the people.”

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/


  By Date           By Thread  

Current thread:
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]
AlienVault