Bugtraq mailing list archives
RealSystem passwords
From: guy () SPICE ORG IL (Guy Cohen)
Date: Thu, 10 Dec 1998 19:59:28 +0200
-----BEGIN PGP SIGNED MESSAGE----- Hi, While installing the evaluation copy of RealSystem G2 server, you have to enter an admin username and password. The password is entered in clear text. not only this, it is writen to the conf file in clear text. not only this, the file is mode 644. The quick fix ofcource is chmod 600 the file. Reg. Guy Cohen. -----BEGIN PGP SIGNATURE----- Version: PGPfreeware 5.0i for non-commercial use Charset: noconv iQCVAwUBNnAMHu+apSPwRBL5AQE+DAQAgu7V5Ap5nefpog11EVqhzx1+c6SxbjCJ naGgyEY5Nwdv/hzqYGmSlgH1zgvJ6NqXKx7Oi0IOHno7d92Gpe4FHa4PLJVAveQt aklpeFbV3b4W3BswtFjX7v2rewCzY17XymHjo+MmfmDl3i8fDozim4yFjCFPzygS xM6F3ZULj9w= =Sxav -----END PGP SIGNATURE-----
Current thread:
- [SAFER-981204.DOS.1.3] Buffer Overflow in Platinum PCM 7.0 Security Research Team (Dec 03)
- Breaking into houses to steal the security systems... Was: Dr. Mudge (Dec 03)
- <Possible follow-ups>
- Re: [SAFER-981204.DOS.1.3] Buffer Overflow in Platinum PCM 7.0 robert.flannigan () PLATINUM COM (Dec 07)
- Call For Papers Marco de Vivo [UCV] (Dec 07)
- Lousy password handling in BreezeCOM Mr. SteelFire (Dec 10)
- Re: Lousy password handling in BreezeCOM Thilo Hille (Dec 10)
- NSA paper on computer security Kragen (Dec 11)
- about the ip header id Salvatore Sanfilippo (Dec 14)
- Learning security Kevin M. Myer (Dec 14)
- Administrivia Aleph One (Dec 10)
- RealSystem passwords Guy Cohen (Dec 10)
- Titan 3.0 Released Aleph One (Dec 10)
- Vulnerability in IRIX fcagent daemon SGI Security Coordinator (Dec 10)
- Linux 2.0.36: The stuff that was 'fixed quietly' [Summary] Alan Cox (Dec 10)
- Microsoft Security Bulletin (MS98-018) Aleph One (Dec 10)