[Linux-disciples] Why no password for the root account?
Dylan Thurston
dpt at lotus.bostoncoop.net
Sun May 1 00:20:36 EDT 2005
On Sat, Apr 30, 2005 at 08:17:08PM -0400, Stephen R Laniel wrote:
> On Sat, Apr 30, 2005 at 07:28:25PM -0400, Dylan Thurston wrote:
> > The first attack I can think of would be to install a keyboard
> > sniffer.
>
> The attacker can only installed the sniffer if he has access
> to your unencrypted filesystem, right? If the filesystem's
> encrypted, I don't see how he could get the sniffer on.
The sniffer could be a separate device (e.g., monitoring the
connection from the keyboard to the motherboard). Alternatively, note
that some of the disk has to be unencrypted (since the code to read
the password, etc. has to be somewhere). The sniffer could be
installed on that part.
Peace,
Dylan
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 189 bytes
Desc: Digital signature
Url : http://lists.bostoncoop.net/pipermail/linux-disciples/attachments/20050501/0b8cbd77/attachment.pgp
More information about the Linux-disciples
mailing list