security issues

Kenneth P. Turvey kt-usenet at squeakydolphin.com
Tue Mar 14 04:47:34 UTC 2006


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

On Mon, 13 Mar 2006 18:04:20 -0600, Lamp wrote:

> Why on God's green earth was the password ever written to a file in
> the first place?!?!??  

You've got a point.  This isn't very wise. 

> I use ubuntu because it's "easy," not expecting
> it to be ultra secure, but this is ridiculous.  To compound the
> problem the explanation given is awful... "since these files were
> world-readable" should have been, "some dumbass wrote code that wrote
> clear text passwords to disk"--the readability of the files is
> irrelevant.    I'm switching distros ASAP, there's no way I can trust
> ubuntu after this.

It was a mistake.  I'm sure the person that made it is quite embarrassed
now.  As you said, security isn't Ubuntu's raison d'être.  It strikes a
good balance overall.  

- -- 
Kenneth P. Turvey <kt-usenet at squeakydolphin.com>

XMPP  IM: kpturvey at jabber.org
Yahoo IM: kpturvey2
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.1 (GNU/Linux)

iD8DBQFEFkrZi2ZgbrTULjoRAtKIAKC6jFYSIMKy4KqrNHLIVJt74On44QCgxRbT
e7+K13D2DzckXrJWp1WE47k=
=9JeS
-----END PGP SIGNATURE-----






More information about the ubuntu-users mailing list