[gpsd-dev] HOWTO: Security
Gary E. Miller
gem at rellim.com
Tue May 24 23:03:56 UTC 2016
Yo Eric!
On Tue, 24 May 2016 18:49:29 -0400
"Eric S. Raymond" <esr at thyrsus.com> wrote:
> > I do not want the best to be the enemy of the better. I'll settle
> > for the next small improvement.
>
> There's a simpler way. First step becomes changing the default-user
> password using a local display and keyboard, *before* the Ethernet is
> plugged in.
Works for me. Ship it.
> That really is airtight, unless you choose a password that's so weak
> that it's early in a rainbow table and the cracker gets lucky before
> the later point where you disable password tunneling entirely.
Only so much we can do:
http://www.theregister.co.uk/2016/05/24/linkedin_password_leak_hack_crack/
> Interestingly enough, my wife Cathy came up with this one as I was
> explaining the problem to her over dinner. Score one for sharp
> Philadelphia lawyers.
Lawyers know logic. Buy her a steak.
RGDS
GARY
---------------------------------------------------------------------------
Gary E. Miller Rellim 109 NW Wilmington Ave., Suite E, Bend, OR 97703
gem at rellim.com Tel:+1 541 382 8588
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 473 bytes
Desc: OpenPGP digital signature
URL: <http://lists.ntpsec.org/pipermail/devel/attachments/20160524/c4fd57cf/attachment.bin>
More information about the devel
mailing list