Full Disclosure mailing list archives
Re: [Full-Disclosure] (Psexec on *NIX)
From: Valdis.Kletnieks () vt edu
Date: Fri, 02 Feb 2007 01:38:20 -0500
On Fri, 02 Feb 2007 13:25:11 +0800, Eduardo Tongson said:
On 2/2/07, Xavier Beaudouin <kiwi () oav net> wrote: <>Allowing direct root login even with SSH is IMHO stupid...Please elaborate why is it IYHO stupid.
In environments where more than 1 person has root access, allowing direct login to root means you can't keep an audit trail of which person logged in. And if your environment only one person has root access, that's just looking for a DoS if the one person is hit by a bus.....
Attachment:
_bin
Description:
_______________________________________________ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
Current thread:
- [Full-Disclosure] (Psexec on *NIX) Gianluca Giacometti (Feb 01)
- Re: [Full-Disclosure] (Psexec on *NIX) Knud Erik Højgaard (Feb 01)
- Re: [Full-Disclosure] (Psexec on *NIX) Paul Schmehl (Feb 01)
- Re: [Full-Disclosure] (Psexec on *NIX) Xavier Beaudouin (Feb 01)
- Re: [Full-Disclosure] (Psexec on *NIX) Eduardo Tongson (Feb 01)
- Re: [Full-Disclosure] (Psexec on *NIX) Valdis . Kletnieks (Feb 01)
- Re: [Full-Disclosure] (Psexec on *NIX) Raj Mathur (Feb 02)
- Re: [Full-Disclosure] (Psexec on *NIX) Valdis . Kletnieks (Feb 02)
- Re: [Full-Disclosure] (Psexec on *NIX) Q-Ball (Feb 04)
- Re: [Full-Disclosure] (Psexec on *NIX) James Matthews (Feb 04)
- Re: [Full-Disclosure] (Psexec on *NIX) Paul Schmehl (Feb 01)
- Re: [Full-Disclosure] (Psexec on *NIX) Tyop? (Feb 02)
- Re: [Full-Disclosure] (Psexec on *NIX) chedder1 (Feb 02)
- Re: [Full-Disclosure] (Psexec on *NIX) Tyop? (Feb 02)
- Re: [Full-Disclosure] (Psexec on *NIX) Knud Erik Højgaard (Feb 03)
- Re: [Full-Disclosure] (Psexec on *NIX) Knud Erik Højgaard (Feb 01)
- Re: [Full-Disclosure] (Psexec on *NIX) Stan Bubrouski (Feb 02)
- Re: [Full-Disclosure] (Psexec on *NIX) Q-Ball (Feb 04)