lists.openwall.net   lists  /  announce  owl-users  owl-dev  john-users  john-dev  passwdqc-users  yescrypt  popa3d-users  /  oss-security  kernel-hardening  musl  sabotage  tlsify  passwords  /  crypt-dev  xvendor  /  Bugtraq  Full-Disclosure  linux-kernel  linux-netdev  linux-ext4  linux-hardening  linux-cve-announce  PHC 
Open Source and information security mailing list archives
 
Hash Suite: Windows password security audit tool. GUI, reports in PDF.
[<prev] [next>] [<thread-prev] [thread-next>] [day] [month] [year] [list]
Message-ID: <200411201420.iAKEKv423814@pop-3.dnv.wideopenwest.com>
From: mvp at joeware.net (joe)
Subject: [in] Re: IE is just as safe as FireFox

I agree with your initial comment, they can both be changed. I also agree
they both do little.

I don't agree that the hardcoding in the source does anything for you. 

--
Pro-Choice
Let me choose if I even want a browser loaded thanks!


 

-----Original Message-----
From: full-disclosure-admin@...ts.netsys.com
[mailto:full-disclosure-admin@...ts.netsys.com] On Behalf Of Frank Knobbe
Sent: Friday, November 19, 2004 10:42 PM
To: Jeremy Davis
Cc: full-disclosure@...ts.netsys.com
Subject: Re: [in] Re: [Full-Disclosure] IE is just as safe as FireFox

On Fri, 2004-11-19 at 20:40, Jeremy Davis wrote:
> Are you able to change root's name in nix? Why not if the answer is no?
> (Things would break right? UID 0?) Knowing the account name is 
> two-thirds of the battle.
> In windows it's fairly easy to change the admin name.
> Not a professional here just curious...

You can change the name of the root account in Unix, just like the
Administrator account in Windows.

But you can not change the UID of the root account (0) just like you can not
change the SID of the Administrator account (500).

I argue that changing the account name in Unix does as little or much as
changing the account name in Windows. If you have access to the system you
can easily find the account name of the UID 0 account, just as easily as you
can figure out the name of the SID x-500 account.

The difference is that you can change and hard code that change in the
source of Unix (at least with those that you have the source for, Linux,
*BSD, whatever). Can you do that with Windows?

Regards,
Frank



Powered by blists - more mailing lists

Powered by Openwall GNU/*/Linux Powered by OpenVZ