Great Circle Associates Firewalls
(February 1994)
 

Indexed By Date: [Previous] [Next] Indexed By Thread: [Previous] [Next]

Subject: Re: ftpd and passwd files
From: smb @ research . att . com
Date: Wed, 02 Feb 94 12:43:48 EST
To: hobbit @ babyoil . ftp . com (*Hobbit*)
Cc: firewalls @ GreatCircle . COM

Here's ours:

	root:DZo0RWR.7DJuU:0:2:0000-Admin(0000):/:
	daemon:*:1:1:0000-Admin(0000):/:
	bin:*:2:2:0000-Admin(0000):/bin:
	sys:*:3:3:0000-Admin(0000):/usr/v9/src:
	adm:*:4:4:0000-Admin(0000):/usr/adm:
	uucp:*:5:5:0000-uucp(0000):/usr/lib/uucp:
	nuucp:*:10:10:0000-uucp(0000):/usr/spool/uucppublic:/usr/lib/uucp/uucico
	ftp:anonymous:71:14:file transfer:/:no soap
	research:nologin:150:10:ftp distribution account:/forget:/it/baby
	ches:La9Cr9ld9qTQY:200:1:me:/u/ches:/bin/sh
	dmr:laHheQ.H9iy6I:202:1:Dennis:/u/dmr:/bin/sh
	rtm:5bHD/k5k2mTTs:203:1:Rob:/u/rtm:/bin/sh
	adb:dcScD6gKF./Z6:205:1:Alan:/u/adb:/bin/sh
	td:deJCw4bQcNT3Y:206:1:Tom:/u/td:/bin/sh

I'll save you the trouble of running crack -- it comes to
``why are you wasting your time''.  And we've had folks try
some of those passwords; root/why has even shown up on hacker
BBS's...

But remember that the TIS version uses the password file for login
privileges to ftpd.  Marcus says that he doesn't do a second chroot,
but I'm not convinced that that's wise -- let your non-anonymous
ftp administrators have access to a functional passwd file, if
they wish, but give anonymous users *nothing*.

Indexed By Date Previous: Socks and DNS
From: hp90101 @ internet . sbi . com (Harry Protoolis)
Next: Re: Socks and DNS
From: Mark Ferneau <ferneau @ reality . palo-alto . sterling . com>
Indexed By Thread Previous: ftpd and passwd files
From: hobbit @ babyoil . ftp . com (*Hobbit*)
Next: Re: ftpd and passwd files
From: mjr @ tis . com

Google
 
Search Internet Search www.greatcircle.com