'Root' Password Readable in Clear Text on Ubuntu Breezy - Printable Version +- Linux-Noob Forums (https://www.linux-noob.com/forums) +-- Forum: Distro Noob (https://www.linux-noob.com/forums/forum-10.html) +--- Forum: Ubuntu (https://www.linux-noob.com/forums/forum-99.html) +--- Thread: 'Root' Password Readable in Clear Text on Ubuntu Breezy (/thread-2091.html) |
'Root' Password Readable in Clear Text on Ubuntu Breezy - anyweb - 2006-03-12 for all you ubuntu users out there, please read the following and act accordingly from:- [/url]http://www.osnews.com/story.php?news_id=13951 [url=https://launchpad.net/distros/ubuntu/+bug/34606]https://launchpad.net/distros/ubuntu/+bug/34606 Quote:A major, critical bug and possible security threat has been discovered in Ubuntu Breezy. Apparantly, the 'root' password (not actually the root password because Ubuntu uses sudo) gets written into the installer's log files in clear text, and can be read by any account on the Ubuntu machine. The bug was first discovered and reproduced on the Ubuntu forums. The bug does not seem to affect Dapper, however, users upgrading from Breezy to Dapper might still be at risk because the log files are not modified. cheers anyweb 'Root' Password Readable in Clear Text on Ubuntu Breezy - znx - 2006-03-12 Quick and easy solution is to remove both files: Code: rm /var/log/installer/cdebconf/questions.dat .. nasty when files like that are left just around :) 'Root' Password Readable in Clear Text on Ubuntu Breezy - skafiskafnjak - 2006-04-30 Is this fixed? Is there any update that fix this problem? 'Root' Password Readable in Clear Text on Ubuntu Breezy - tamy - 2008-08-04 Hi guys, I used this site to sort out the root password problem i had with ubuntu http://www.fixya.com/support/t879022-ubunt...e_root_password It's really clear and easy Ubuntu ROCKS!!!! |