Security Basics mailing list archives
Security issues in publishing content of /etc ?
From: lemieuxs () ca inter net
Date: Sat, 7 Aug 2004 18:06:06 US/Eastern
Hi there, I was wondering about the following idea. What if the content of the /etc/ directory of a linux server was public to anyone logged in. And what if anyone could log in, with read-only access. I believe the security issue here is that there will be no secrets for anyone who wants to hack, they'll know the DNS IP, running services, their options, they will be able to copy /etc/passwd and crack the passwords with time. What else could bring a security issue? I'm asking this because I'm soon going to develop a file sharing program which the whole network will mimic a single virtual host, but with no central nodes, the write permissions will be stored publicly,etc. I'll probably post my project's headline when I get a clearer idea of how to handle it. Thanks in advance, Simon --------------------------------------------------------------------------- Ethical Hacking at the InfoSec Institute. Mention this ad and get $545 off any course! All of our class sizes are guaranteed to be 10 students or less to facilitate one-on-one interaction with one of our expert instructors. Attend a course taught by an expert instructor with years of in-the-field pen testing experience in our state of the art hacking lab. Master the skills of an Ethical Hacker to better assess the security of your organization. Visit us at: http://www.infosecinstitute.com/courses/ethical_hacking_training.html ----------------------------------------------------------------------------
Current thread:
- Security issues in publishing content of /etc ? lemieuxs (Aug 09)
- Re: Security issues in publishing content of /etc ? Lukasz Sztachanski (Aug 09)
- Re: Security issues in publishing content of /etc ? Fabio Miranda Hamburger (Aug 09)
- <Possible follow-ups>
- Re: Security issues in publishing content of /etc ? lemieuxs (Aug 09)
- Re: Security issues in publishing content of /etc ? Fabio Miranda Hamburger (Aug 09)
- *sigh* Re: Security issues in publishing content of /etc ? Evaldo Gardenali (Aug 10)
- Re: Security issues in publishing content of /etc ? Fabio Miranda Hamburger (Aug 09)