Re: unsafe file permissions on /usr/bin/login

To: JP <rlntlss83%gmail.com@localhost>
Subject: Re: unsafe file permissions on /usr/bin/login
From: Manuel Bouyer <bouyer%antioche.eu.org@localhost>
Date: Wed, 28 Nov 2018 19:11:45 +0100

On Wed, Nov 28, 2018 at 01:09:19PM -0500, JP wrote:
> I cannot brute force su if I am not in the wheel group.

against root, for other users you can

> 
> I can brute force login regardless of group affiliation.

not against root either. 

-- 
Manuel Bouyer <bouyer%antioche.eu.org@localhost>
     NetBSD: 26 ans d'experience feront toujours la difference
--

Follow-Ups:
- Re: unsafe file permissions on /usr/bin/login
  - From: JP

References:
- unsafe file permissions on /usr/bin/login
  - From: JP
- Re: unsafe file permissions on /usr/bin/login
  - From: Manuel Bouyer
- Re: unsafe file permissions on /usr/bin/login
  - From: JP
- Re: unsafe file permissions on /usr/bin/login
  - From: Manuel Bouyer
- Re: unsafe file permissions on /usr/bin/login
  - From: JP
- Re: unsafe file permissions on /usr/bin/login
  - From: Manuel Bouyer
- Re: unsafe file permissions on /usr/bin/login
  - From: JP
- Re: unsafe file permissions on /usr/bin/login
  - From: Manuel Bouyer
- Re: unsafe file permissions on /usr/bin/login
  - From: JP

Prev by Date: Re: unsafe file permissions on /usr/bin/login
Next by Date: Re: unsafe file permissions on /usr/bin/login
Previous by Thread: Re: unsafe file permissions on /usr/bin/login
Next by Thread: Re: unsafe file permissions on /usr/bin/login
Indexes:

Home | Main Index | Thread Index | Old Index