MESSAGE
DATE | 2003-03-05 |
FROM | Ron Guerin
|
SUBJECT | Re: [hangout] bash history
|
From owner-hangout-desteny-at-mrbrklyn.com Wed Mar 5 12:13:43 2003 Received: from www2.mrbrklyn.com (localhost [127.0.0.1]) by mrbrklyn.com (8.12.3/8.11.2/SuSE Linux 8.11.1-0.5) with ESMTP id h25HDhxt008111 for ; Wed, 5 Mar 2003 12:13:43 -0500 Received: (from mdom-at-localhost) by www2.mrbrklyn.com (8.12.3/8.12.3/Submit) id h25HDhl0008110 for hangout-desteny; Wed, 5 Mar 2003 12:13:43 -0500 X-Authentication-Warning: www2.mrbrklyn.com: mdom set sender to owner-hangout-at-www2.mrbrklyn.com using -f Received: from vnetworx.net (www.vnetworx.net [64.39.31.89]) by mrbrklyn.com (8.12.3/8.11.2/SuSE Linux 8.11.1-0.5) with SMTP id h25HDgxt008105 for ; Wed, 5 Mar 2003 12:13:43 -0500 Received: (qmail 25335 invoked by uid 513); 5 Mar 2003 17:15:53 -0000 Received: from dsl081-215-128.nyc2.dsl.speakeasy.net (64.81.215.128) by www.vnetworx.net with SMTP; 5 Mar 2003 17:15:53 -0000 Subject: Re: [hangout] bash history From: Ron Guerin To: Marco Scoffier Cc: hangout In-Reply-To: <20030305170710.GB5357-at-metm.org> References: <20030305050627.GA17790-at-www2.mrbrklyn.com> <20030305151510.GB4455-at-metm.org> <20030305160149.GA7025-at-www2.mrbrklyn.com> <20030305170710.GB5357-at-metm.org> Content-Type: text/plain Organization: VNetworX Internet Message-Id: <1046884487.26931.289216.camel-at-dante> Mime-Version: 1.0 X-Mailer: Ximian Evolution 1.2.2 Date: 05 Mar 2003 12:14:48 -0500 Content-Transfer-Encoding: 7bit Sender: owner-hangout-at-mrbrklyn.com Precedence: bulk Reply-To: Ron Guerin List: New Yorkers Linux Scene Admin: To unsubscribe send unsubscribename-at-domian.com to hangout-request-at-www2.mrbrklyn.com X-Keywords: X-UID: 10351 Status: RO Content-Length: 1099 Lines: 31
On Wed, 2003-03-05 at 12:07, Marco Scoffier wrote: > On Wed, Mar 05, 2003 at 11:01:49AM -0500, Ruben Safir wrote: > > > > what's the pros and cons of having the root history around. > > > Well it is one of the most obvious places to look for passwords. > > su password > > is quite a common mistake. as is ssh user-at-host password > > I don't erase root's history in fact I am a huge fan of history. I love > that the long complex command I typed in last week or three weeks ago is > still lying around. I believe Jay thinks strongly about this also.
Unfortunately, it is both. A wonderful convenience and a foolish security risk. I'm about to delete my MySQL history because I know it's the right thing to do from a security standpoint, while knowing I'll miss it when it's gone.
The trick for that is to maintain a little file with those complex commands. I don't remember to add to it as often as I should though.
- Ron
____________________________ NYLXS: New Yorker Free Software Users Scene Fair Use - because it's either fair use or useless.... NYLXS is a trademark of NYLXS, Inc
|
|