I don't want a keyring password

jdow jdow at earthlink.net
Tue Mar 20 08:19:07 UTC 2007


From: "Ed Greshko" <Ed.Greshko at greshko.com>

> jdow wrote:
>> From: "Sam Varshavchik" <mrsam at courier-mta.com>
>>
>>>> Well you wouldn't want your personal passwords stored in plain text, 
>>>> where they'd be readable by other users.
>>>
>>> What, mode 0600 does not work any more?
>>
>> Of course not. It never did. An encrypted key ring is safe from "root".
>> An unencrypted key ring is open to root. So if you get root kitted your
>> passwords are dead.
>>
>> And only the mentally deficient always run as root.
>
> Reminds me of a co-worker of years ago, Doug, who was astonished and 
> pleased that every time he installed a Solaris system an account was 
> created for him without any special action on his part.  Right, "Doug 
> Root".
>
> BTW, does your assessment include folks whose computer is totally isolated 
> from any network?

As a matter of fact, yes. It sets up a bad habit.

{^_^} 




More information about the fedora-list mailing list