To RedHat, Mandrake and other bloated distros user

SKyWolf's user. Any halfway decent hacker could use this information.

[pbharris]

thanks Vince!

I fixed my debian box which also happens to be my web server. the redhat box had finger disabled by default.

[Ashcrow]

you know all machines will have a username called root.

No, not always. You can hack around and change the super user to other names if you wanted to. Also, a lot of people totally disable root and add a diffrent user to take the place of root with the idea that any access done by root would be an intrueder.

[Ashcrow]

I guess I should point out that it can be very helpfull in social engineering. You can pose as a tech on the phone easily when cracking a buisness. Users arn't always smart enough to understand that you don't have to be on site to find out social (finger) information.

Yup. If you put your real name, the attacker calls and says
"Hi <your first name>, this is I.M. Ackingiu, we have a request. We would like it if you could change your password to 'apple' to test a new password feature, can you do that?"

Watch out...

Yup. If you put your real name, the attacker calls and says
"Hi <your first name>, this is I.M. Ackingiu, we have a request. We would like it if you could change your password to 'apple' to test a new password feature, can you do that?"

Watch out...

Sure... Like I or anyone else would be stupid enough to do this ??

/me changes password to h4x0rzsUckzz !!

oh http://infolinux.de/ was h4x0r3d, while we're talking lame stufff to do, I hate crackers!

[traceroute]

Gentoo.

[thpook]

[quote author=traceroute link=board=5;threadid=1218;start=0#8690 date=1020247844]
Gentoo.


[/quote]

God bless you.

No, seriously... OpenBSD.

[Feztaa]

[quote author=Ashcrow link=board=5;threadid=1218;start=0#8686 date=1018833666]

you know all machines will have a username called root.

No, not always. You can hack around and change the super user to other names if you wanted to.[/quote]

Code:

$ grep ":0:" /etc/passwd
jimmyjo:x:0:0:jimmyjo:/jj:/bin/bash

Oops, so much for renaming root...

But about finger...

Code:

$ pinky @localhost
Login       Name             TTY       Idle   When         Where

That's really weird... nobody logged in... not even me...

[xin]

So how do you rename Root? Seems a smart idea, me know a lot of skript kiddie's and almost n00b haxorz (skript kiddies are different to n00bs IMHO)