Re: [gpsd-dev] HOWTO: Security

gpsd-dev

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [gpsd-dev] HOWTO: Security

From:	Gary E. Miller
Subject:	Re: [gpsd-dev] HOWTO: Security
Date:	Tue, 24 May 2016 16:03:56 -0700

Yo Eric!

On Tue, 24 May 2016 18:49:29 -0400
"Eric S. Raymond" <address@hidden> wrote:

> > I do not want the best to be the enemy of the better.  I'll settle
> > for the next small improvement.  
> 
> There's a simpler way.  First step becomes changing the default-user
> password using a local display and keyboard, *before* the Ethernet is
> plugged in.

Works for me.  Ship it.

> That really is airtight, unless you choose a password that's so weak
> that it's early in a rainbow table and the cracker gets lucky before
> the later point where you disable password tunneling entirely.

Only so much we can do:

http://www.theregister.co.uk/2016/05/24/linkedin_password_leak_hack_crack/

> Interestingly enough, my wife Cathy came up with this one as I was
> explaining the problem to her over dinner.  Score one for sharp
> Philadelphia lawyers.

Lawyers know logic.  Buy her a steak.

RGDS
GARY
---------------------------------------------------------------------------
Gary E. Miller Rellim 109 NW Wilmington Ave., Suite E, Bend, OR 97703
        address@hidden  Tel:+1 541 382 8588

pgpSFCXM58InP.pgp
Description: OpenPGP digital signature

[Prev in Thread]

Current Thread

[Next in Thread]

Re: [gpsd-dev] Draft Stratum 1 Microserver HOWTO is up, (continued)

Prev by Date: Re: [gpsd-dev] HOWTO: Security
Next by Date: Re: [gpsd-dev] HOWTO: Security
Previous by thread: Re: [gpsd-dev] HOWTO: Security
Next by thread: Re: [gpsd-dev] HOWTO: Security
Index(es):
- Date
- Thread