Beefy Boxes and Bandwidth Generously Provided by pair Networks
P is for Practical
 
PerlMonks  

Re: Is this script safe?

by scottstef (Curate)
on May 25, 2001 at 04:22 UTC ( #83182=note: print w/ replies, xml ) Need Help??


in reply to Is this script safe?

Not even the considering code this- idea is terrifies me. Allowing ANYONE one to log into your account is dangerous. What if this person logs in and then copies /etc/password & /etc/shadow? You mention that you will change the passwords weekly. Cracking a password can be done in less than a day. You have just given someone an opportunity to brute force root. After I get root, I can spam and get your server blackholed. I can start removing any files I deem unecessary. I can add root kits at will. Being a sysadmin and securing a server is tough enough, why make it any harder on yours?
Moral of the story- don't allow anyone to log in as you.


Comment on Re: Is this script safe?

Log In?
Username:
Password:

What's my password?
Create A New User
Node Status?
node history
Node Type: note [id://83182]
help
Chatterbox?
and the web crawler heard nothing...

How do I use this? | Other CB clients
Other Users?
Others about the Monastery: (7)
As of 2015-07-05 23:38 GMT
Sections?
Information?
Find Nodes?
Leftovers?
    Voting Booth?

    The top three priorities of my open tasks are (in descending order of likelihood to be worked on) ...









    Results (68 votes), past polls