Re: unsafe file permissions on /usr/bin/login

To: bouyer%antioche.eu.org@localhost
Subject: Re: unsafe file permissions on /usr/bin/login
From: JP <rlntlss83%gmail.com@localhost>
Date: Wed, 28 Nov 2018 13:20:42 -0500

well, I can see it... and it's not staying that way on anything I deploy.

On Wed, Nov 28, 2018 at 1:11 PM Manuel Bouyer <bouyer%antioche.eu.org@localhost> wrote:

On Wed, Nov 28, 2018 at 01:09:19PM -0500, JP wrote:
> I cannot brute force su if I am not in the wheel group.

against root, for other users you can

>
> I can brute force login regardless of group affiliation.

not against root either.

--
Manuel Bouyer <bouyer%antioche.eu.org@localhost>
NetBSD: 26 ans d'experience feront toujours la difference
--

Follow-Ups:
- Re: unsafe file permissions on /usr/bin/login
  - From: JP

References:
- unsafe file permissions on /usr/bin/login
  - From: JP
- Re: unsafe file permissions on /usr/bin/login
  - From: Manuel Bouyer
- Re: unsafe file permissions on /usr/bin/login
  - From: JP
- Re: unsafe file permissions on /usr/bin/login
  - From: Manuel Bouyer
- Re: unsafe file permissions on /usr/bin/login
  - From: JP
- Re: unsafe file permissions on /usr/bin/login
  - From: Manuel Bouyer
- Re: unsafe file permissions on /usr/bin/login
  - From: JP
- Re: unsafe file permissions on /usr/bin/login
  - From: Manuel Bouyer
- Re: unsafe file permissions on /usr/bin/login
  - From: JP
- Re: unsafe file permissions on /usr/bin/login
  - From: Manuel Bouyer

Prev by Date: Re: unsafe file permissions on /usr/bin/login
Next by Date: Re: unsafe file permissions on /usr/bin/login
Previous by Thread: Re: unsafe file permissions on /usr/bin/login
Next by Thread: Re: unsafe file permissions on /usr/bin/login
Indexes:

Home | Main Index | Thread Index | Old Index