Path: utzoo!utgpu!watmath!clyde!att!osu-cis!tut.cis.ohio-state.edu!rutgers!rochester!pt.cs.cmu.edu!cadre!pitt!cisunx!cmf From: cmf@cisunx.UUCP (Carl M. Fongheiser) Newsgroups: comp.sys.next Subject: Re: diskless NeXT? (was Re: Announcement vs reality) Keywords: Next Message-ID: <13977@cisunx.UUCP> Date: 29 Nov 88 07:00:55 GMT References: <17846@glacier.STANFORD.EDU> <3638@pt.cs.cmu.edu> <28185@tut.cis.ohio-state.edu> <267@aber-cs.UUCP> <28493@tut.cis.ohio-state.edu> Reply-To: cmf@unix.cis.pittsburgh.edu (Carl M. Fongheiser) Distribution: eunet,world Organization: Univ. of Pittsburgh, Comp & Info Sys Lines: 14 In article <28493@tut.cis.ohio-state.edu> romig@stegosaur.cis.ohio-state.edu (Steven M. Romig) writes: >If folks have root access to a workstation, then they can >install trojan horses on that workstation and get the passwords of >unsuspecting users (or worse). Gee, Steve, give me ten minutes with a non-root account on one of your workstations, and I virtually guarantee that I can get the password for the next person who walks up to it. Why do you need root access to get people's passwords? It hardly even makes it easier! Carl Fongheiser University of Pittsburgh ...!pitt!cisunx!cmf cmf@unix.cis.pittsburgh.edu