| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Message-Id: <1162459503.768.17.camel@aspirateur.sygroup-int.ch>
Date: Thu, 02 Nov 2006 10:25:03 +0100
From: Tonnerre Lombard <tonnerre.lombard@...roup.ch>
To: nocfed <nocfed@...il.com>
Cc: full-disclosure@...ts.grok.org.uk
Subject: Re: Putty Proxy login/password discolsure....
Salut,
On Thu, 2006-11-02 at 01:15 -0600, nocfed wrote:
> And if you have physical access then you can simply use a floppy, usb
> dongle, or any other type of removable media to boot from. Once
> physical access is obtained then you pretty much have full access,
> barring full disk encryption. Personally I see linux's password for
> single user mode to be like a screen door infront of an old door with
> a combination lock on it. It takes VERY little effort to punch a
> whole through it, even if you only have 1 minute alone with the
> server.
If you have physical access, just plug in your iPod with UNIX and enjoy
full memory access to the host machine...
Tonnerre
--
SyGroup GmbH
Tonnerre Lombard
Lösungen mit System
Tel:+41 61 333 80 33 Röschenzerstrasse 9
Fax:+41 61 383 14 67 4153 Reinach BL
Web:www.sygroup.ch tonnerre.lombard@...roup.ch
Download attachment "signature.asc" of type "application/pgp-signature" (826 bytes)
_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/
Powered by blists - more mailing lists