Home page logo

fulldisclosure logo Full Disclosure mailing list archives

Re: Ubuntu 11.10 now unsecure by default
From: Tom Grace <lists-in () deathbycomputers co uk>
Date: Thu, 17 Nov 2011 18:17:52 +0000

On 17/11/11 18:14, Valdis.Kletnieks () vt edu wrote:
The problem is that if you install Ubuntu on a server (as lots of people do)
and enable ssh so you can remotely admin the server, you can find yourself shot
in the foot if you don't realize there's a passwordless guest account.
PermitEmptyPasswords no

Is set by default in sshd_config

Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

  By Date           By Thread  

Current thread:
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]