Path: utzoo!attcan!uunet!mcsun!unido!quando!omerzu
From: omerzu@quando.UUCP (Thomas Omerzu)
Newsgroups: comp.unix.questions
Subject: Re: How secure is UNIX? (Re: Stupid man pages)
Message-ID: <1557@quando.UUCP>
Date: 9 Jun 90 13:23:09 GMT
References: <1990May23.100928.10699@agate.berkeley.edu> <720016@hpclapd.HP.COM>
Reply-To: omerzu@quando.UUCP (Thomas Omerzu)
Organization: Quantum GmbH, Dortmund, W-Germany
Lines: 22

In article <720016@hpclapd.HP.COM> defaria@hpclapd.HP.COM (Andy DeFaria) writes:
[...]
>>2. Grab the encrypted password for root out of the (publicly readable)
>>   /etc/passwd.
[...]
>
>I  thought I explained  this.  IMHO  /etc/passwd should  NOT   be  publicly
>readable.   If this were  true then you   couldn't ftp as  root because you
[...]

I cannot find out where you explained this,
but have you ever tried to remove public read permissions
from /etc/passwd?
Very funny results, not the simplest 'ls -l' will work ...

And now MAY WE STOP this discussion PLEASE?
To me it seems as if everything worthy of discussion has been said
at least twice, and every new aspect is more unqualified than the
one before ...

--
	Thomas Omerzu, omerzu@quando.quantum.de