> He wanted to show me that he can access /etc/shadow with my user but
of course he couldnt :)
Correct me if I am wrong but a "User" should not be able to access
shadow anyway - only root can...
So buy him thinking that any user can access /etc/shadow - this would
suggest to me that he don't have a clue..
Which in my mind indicates that your gonna do all this effort to keep
him out but is it really worth it if it seems he don't even know the
second thing about linux ??? The first thing in his case being that
there is such a thing as a shadow file... ;)
--
gentoo-security@gentoo.org mailing list
of course he couldnt :)
Correct me if I am wrong but a "User" should not be able to access
shadow anyway - only root can...
So buy him thinking that any user can access /etc/shadow - this would
suggest to me that he don't have a clue..
Which in my mind indicates that your gonna do all this effort to keep
him out but is it really worth it if it seems he don't even know the
second thing about linux ??? The first thing in his case being that
there is such a thing as a shadow file... ;)
--
gentoo-security@gentoo.org mailing list