Full Disclosure: Re: Ubuntu 11.10 now unsecure by default

Re: Ubuntu 11.10 now unsecure by default

From: Tom Grace <lists-in () deathbycomputers co uk>
Date: Thu, 17 Nov 2011 18:17:52 +0000

On 17/11/11 18:14, Valdis.Kletnieks () vt edu wrote:

The problem is that if you install Ubuntu on a server (as lots of people do)
and enable ssh so you can remotely admin the server, you can find yourself shot
in the foot if you don't realize there's a passwordless guest account.

PermitEmptyPasswords no

Is set by default in sshd_config

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

By Date By Thread

Current thread:

Re: Ubuntu 11.10 now unsecure by default, (continued)
- Re: Ubuntu 11.10 now unsecure by default Robert Kim App and Facebook Marketing (Nov 20)
  - Re: Ubuntu 11.10 now unsecure by default Dan Kaminsky (Nov 20)
- Re: Ubuntu 11.10 now unsecure by default Memory Vandal (Nov 20)
  - Re: Ubuntu 11.10 now unsecure by default xD 0x41 (Nov 20)
    - Re: Ubuntu 11.10 now unsecure by default Memory Vandal (Nov 23)
  - Re: Ubuntu 11.10 now unsecure by default xD 0x41 (Nov 20)
    - Re: Ubuntu 11.10 now unsecure by default Ferenc Kovacs (Nov 20)
    - Re: Ubuntu 11.10 now unsecure by default Valdis . Kletnieks (Nov 21)