[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[cobalt-security] [Qube2] Admin Account

Subject: [cobalt-security] [Qube2] Admin Account
From: Mike Vanecek <nospam99@xxxxxxxxxxxx>
Date: Sat, 10 Jun 2000 21:46:47 -0500
Organization: anonymous

One can install ssh.1.2.27 and then disable telnet. SSH1 can then be used for
telnet, ftp, and gui admin.

However, after that, I am worried about the standard do everything userid
account of admin. On NT systems one of the first things I do is set up another
administrator account and then rename the original administrator account to
something else. That way a hacker cannot try to find the pw for administrator
since it does not exist. 

Anyone familiar with Cobalt knows the default administrative account is named
admin. Hence, one can focus one's pw attack on the userid admin. Since both
admin and root share the same password, getting to admin means that root is
also available. 

I have been looking at the config files trying to see if admin could be
renamed and a second admin userid created. However, it seems as though the
admin userid is pervasive throughout the system.

Seems to me that this is a risk exposure that should not be open? Am I being
overly cautious?

Has anyone renamed the admin userid and if so, any words of advice as to the
best way to proceed?

Thanks, Mike.

Follow-Ups:
- Re: [cobalt-security] [Qube2] Admin Account
  - From: Åke Brännström

Prev by Date: [cobalt-security] Re: Re: changing "admin" login defualt
Next by Date: [cobalt-security] Cron
Previous by thread: [cobalt-security] Re: Re: changing "admin" login defualt
Next by thread: Re: [cobalt-security] [Qube2] Admin Account

Sun Cobalt Security Message Index

Sun Cobalt Security Thread Index