On 2 Nov 2005 08:26:35 -0800, [EMAIL PROTECTED] (Staller, Allan) wrote: > >IIRC on a traditional *NIX system, /etc/passwd contains the password in clear >text. >The act of giving the auditor a copy (hardcopy or other) would be an audit >violation.
I could see someone asking for this - and if given it, he reports about your security breach. >Of course the fact that this is a VM system (which does not have /etc/passwd) >is laughable. Except this shows that the auditor didn't know what he was doing. ---------------------------------------------------------------------- For IBM-MAIN subscribe / signoff / archive access instructions, send email to [EMAIL PROTECTED] with the message: GET IBM-MAIN INFO Search the archives at http://bama.ua.edu/archives/ibm-main.html
