On Wed, Jan 21, 2004 at 09:33:09PM +0000, Paul Jakma wrote:
> On Wed, 21 Jan 2004, John P. Looney wrote:
>> > If you have security concerns, I'd say spend the time hunting down
> > the guy running crack on your password files,
>> and how do you find that person?
Off the top of my head:
Process accounting
Searching for John etc.
Monitoring all process that take over an hour of CPU time(assumes they're running on one of you systems, its always possible to farm out such a job).
Look for big NIS accesses(eg ypcat passwd) dependant on cracking all
passwords. Will fail if retreived in smaller groupings.
Apply alcohol to users and see if someone blabbers :-)
Social engineering is the only method IMHO if they have any inteligence.
Brian
> > John
Maintained by the ILUG website team. The aim of Linux.ie is to
support and help commercial and private users of Linux in Ireland. You can
display ILUG news in your own webpages, read backend
information to find out how. Networking services kindly provided by HEAnet, server kindly donated by
Dell. Linux is a trademark of Linus Torvalds,
used with permission. No penguins were harmed in the production or maintenance
of this highly praised website. Looking for the
Indian Linux Users' Group? Try here. If you've read all this and aren't a lawyer: you should be!
