Path: utzoo!utgpu!watmath!clyde!att!osu-cis!tut.cis.ohio-state.edu!rutgers!rochester!pt.cs.cmu.edu!cadre!pitt!cisunx!cmf
From: cmf@cisunx.UUCP (Carl M. Fongheiser)
Newsgroups: comp.sys.next
Subject: Re: diskless NeXT? (was Re: Announcement vs reality)
Keywords: Next
Message-ID: <13977@cisunx.UUCP>
Date: 29 Nov 88 07:00:55 GMT
References: <17846@glacier.STANFORD.EDU> <3638@pt.cs.cmu.edu> <28185@tut.cis.ohio-state.edu> <267@aber-cs.UUCP> <28493@tut.cis.ohio-state.edu>
Reply-To: cmf@unix.cis.pittsburgh.edu (Carl M. Fongheiser)
Distribution: eunet,world
Organization: Univ. of Pittsburgh, Comp & Info Sys
Lines: 14

In article <28493@tut.cis.ohio-state.edu> romig@stegosaur.cis.ohio-state.edu (Steven M. Romig) writes:
>If folks have root access to a workstation, then they can
>install trojan horses on that workstation and get the passwords of
>unsuspecting users (or worse).

Gee, Steve, give me ten minutes with a non-root account on one of your
workstations, and I virtually guarantee that I can get the password for
the next person who walks up to it.  Why do you need root access to get
people's passwords?  It hardly even makes it easier!

					Carl Fongheiser
					University of Pittsburgh
					...!pitt!cisunx!cmf
					cmf@unix.cis.pittsburgh.edu