oss-sec mailing list archives
Re: Re: Yubiserver package ships with pre-filled identities
From: Kurt Seifried <kseifried () redhat com>
Date: Mon, 30 Jan 2012 19:22:57 -0700
On 01/30/2012 03:14 PM, Nanakos Chrysostomos wrote:
Is this account documented/the impact documented?What do you mean?
Is this issue clearly documented, e.g. do the docs say "WARNING: A DEFAULT ACCOUNT IS ENABLED. THIS IS NOT SAFE. IT MUST BE REMOVED PRIOR TO PRODUCTION USE" and so on. Steve: thoughts/comments? -- Kurt Seifried Red Hat Security Response Team (SRT)
Current thread:
- Re: Yubiserver package ships with pre-filled identities Jonathan Wiltshire (Jan 30)
- Re: Re: Yubiserver package ships with pre-filled identities Kurt Seifried (Jan 30)
- Re: Re: Yubiserver package ships with pre-filled identities Nanakos Chrysostomos (Jan 30)
- Re: Re: Yubiserver package ships with pre-filled identities Kurt Seifried (Jan 30)
- Re: Re: Yubiserver package ships with pre-filled identities Nanakos Chrysostomos (Jan 30)
- Re: Re: Yubiserver package ships with pre-filled identities Kurt Seifried (Jan 30)
- Re: Re: Yubiserver package ships with pre-filled identities Nanakos Chrysostomos (Jan 30)
- Re: Re: Yubiserver package ships with pre-filled identities Nanakos Chrysostomos (Jan 30)
- Re: Re: Yubiserver package ships with pre-filled identities Kurt Seifried (Jan 30)
- Re: Re: Yubiserver package ships with pre-filled identities Gian Piero Carrubba (Jan 30)
- Re: Re: Yubiserver package ships with pre-filled identities Steven M. Christey (Jan 31)