Lc.DB — the Linux.com Article Museum
Home:: Authors:: Categories:: Staff:: All Articles Powered by GNU/Linux
Originally published: Tuesday, 7 September 1999 Author: Quentin Cregan
Published to: news_enhance_security/Security News Page: 1/1   [Standard view]

xscreensaver potentially gives away crypted root password

In a post to the LSAP mailing lists, Olaf Kirch indicated that after a brief audit of xscreensaver, he'd noticed the software made a copy of the encrypted root password. Should the software crash early, the crypted password could be presented, leading to a potential brute force attack.

(this article had no body text)

Originally published on Linux.com. Released under the Open Content License unless otherwise stated. Notify Gareth Watts of any errors or copyright violations.