On 23 Mar 2000, Brian May wrote: > Tim> perl -npi.bak -e 's/^root:[^:]*:/root:pants/o' > Tim> /etc/shadow > Just a nitpick for the very security paranoid (ie myself!): > The encrypted password will show up in the ps listing... > Out of curiosity: Is there anyway to avoid this?
put the script in a file and do a "perl <file>". well, now for the _real_ paranoid: how do you delete it from memory? :) i think automatic pw changing is a very ugly thing. and i don't think that it provides any extra security. i heard of someone how changed the password periodically (good idea) BUT: to avoid telling the other sysadmins the new password, he choosed to set it to the actual date so they can look at the calendar to find it out... *sigh* sebastian
