From owner-freebsd-questions@FreeBSD.ORG Sat May 30 08:21:08 2009 Return-Path: Delivered-To: freebsd-questions@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 902EC1065674 for ; Sat, 30 May 2009 08:21:08 +0000 (UTC) (envelope-from utisoft@googlemail.com) Received: from mail-bw0-f213.google.com (mail-bw0-f213.google.com [209.85.218.213]) by mx1.freebsd.org (Postfix) with ESMTP id 12ABF8FC0C for ; Sat, 30 May 2009 08:21:07 +0000 (UTC) (envelope-from utisoft@googlemail.com) Received: by bwz9 with SMTP id 9so6668815bwz.43 for ; Sat, 30 May 2009 01:21:07 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=googlemail.com; s=gamma; h=domainkey-signature:mime-version:received:reply-to:in-reply-to :references:from:date:message-id:subject:to:cc:content-type :content-transfer-encoding; bh=SyCCEafEumVC1p8wAF/HWG54bzOoYHHEreqkukJgEbw=; b=QJeg/rhTHRr3AEHIrBGEmG0FHUT97tXF8TWBvEkoF6TatOuWRdw/jrz0U25es4uZqd OV0GTPErio1gLLgzrQTX32SdH0Qo9l2xGhF1TNQMlFIbyKlU4drrhr8akRw67f3FEgJ7 /NM7g/a/p+aQaEekehkyCBccmhdRHZVgFHrXY= DomainKey-Signature: a=rsa-sha1; c=nofws; d=googlemail.com; s=gamma; h=mime-version:reply-to:in-reply-to:references:from:date:message-id :subject:to:cc:content-type:content-transfer-encoding; b=FyuzZ6vpe4u3Xt+FA6VVL31u20/mD3BG8YECQ7/oXN48P7hp3kpwFIZrILJXQ1L0gZ JBZVW9sH39WuUWVs32RmbYDBfopL9wLcC5oZThBb+6coN5CM0DdMdGcTzZTVb5ddQQZ3 tNqnY21aH0TkV7nvoWiLqrkqDRHxuDUKJDXLY= MIME-Version: 1.0 Received: by 10.204.52.5 with SMTP id f5mr3223157bkg.203.1243671667054; Sat, 30 May 2009 01:21:07 -0700 (PDT) In-Reply-To: References: <200905281030.n4SAUXdA046386@banyan.cs.ait.ac.th> <200905280847.12966.kirk@strauser.com> <200905280904.44025.kirk@strauser.com> <20090528183801.82b36bbb.freebsd@edvax.de> <4a1f9cf7.UEl7lAiK4FGe5eG7%perryh@pluto.rain.com> From: Chris Rees Date: Sat, 30 May 2009 09:20:44 +0100 Message-ID: To: Wojciech Puchar Content-Type: text/plain; charset=ISO-8859-1 Content-Transfer-Encoding: 7bit Cc: perryh@pluto.rain.com, freebsd-questions@freebsd.org Subject: Re: Remotely edit user disk quota X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list Reply-To: utisoft@gmail.com List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sat, 30 May 2009 08:21:09 -0000 2009/5/29 Wojciech Puchar : >> Wojciech Puchar wrote: >> >>> Even 15 seconds of thinking is enough to understand that logging >>> to other user and then su - gives completely no extra security. >> >> I don't buy this, given that root's login name is well known :) > > if someone can intercept the passwords you type, then he/she will intercept > both user password you log in and then su password you type. > > He/she actually can gain more if you use su, as you may use the same user > password somewhere else. But we're talking about vulnerability to dictionary and brute-force attacks. You'd have to first: Ascertain a username in the wheel group. Brute-force that password. THEN, you need to brute-force root's password. Chris -- A: Because it messes up the order in which people normally read text. Q: Why is top-posting such a bad thing? A: Top-posting. Q: What is the most annoying thing in a mailing list?