Whose bright(stupid) idea was this?
From: Dave Millen (postmaster_at_[127.0.0.1)
Date: 11/22/03
- Next message: ray hartman: "Re: can'r de-assert kde"
- Previous message: Tim Lank: "Re: GNOME - viewing multiple workspaces simultaneously"
- Next in thread: Lucien van Lint: "Re: Whose bright(stupid) idea was this?"
- Reply: Lucien van Lint: "Re: Whose bright(stupid) idea was this?"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
Date: Sat, 22 Nov 2003 01:26:34 +0000
For security reasons, I have long been using a usernames similar to:
Mr6xO0g3
(i.e. a totally random mix of upper/lower case and numeric) as the only
permitted ssh logins to systems that I administer. I feel that this along
with similarly sensible passwords, changed frequently, gives added
security against dictionary attacks etc.
Today, I did a completely fresh install of RH 9 on a firewall/gateway
machine, rather than an upgrade. Guess what - I can now only use lowercase
and numerals for usernames. Why not go the whole hog; disregard security
altogether and ignore case, as whinedoze does.
I'll put the old passwd and shadow files back on it tomorrow and see if
they are accepted, but I am shocked at what I consider a retrograde step.
This is the first fresh install I have done for some time. Have I missed a
trick somewhere? Is this a RH peculiarity or is it now 'generic' linux
practice to limit usernames in this way?
Regards,
Dave
- Next message: ray hartman: "Re: can'r de-assert kde"
- Previous message: Tim Lank: "Re: GNOME - viewing multiple workspaces simultaneously"
- Next in thread: Lucien van Lint: "Re: Whose bright(stupid) idea was this?"
- Reply: Lucien van Lint: "Re: Whose bright(stupid) idea was this?"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
Relevant Pages
|
