https://bugzilla.novell.com/show_bug.cgi?id=331043#c7 Ralph Jones <rjones@scribbleware.net> changed: What |Removed |Added ---------------------------------------------------------------------------- CC| |rjones@scribbleware.net --- Comment #7 from Ralph Jones <rjones@scribbleware.net> 2007-10-09 14:25:10 MST --- This also leaves vulnerable the careless user who writes a script for convenience and leaves a plain text fingerprint of their own, or others (including root) passwords. It's not impossible (or even improbable) Joe User decides to automate a few commands in a script, echoes some passwords to su in the script, but doesn't pay attention to the read permissions of the scriptfile. Later, Becky User comes along, sees the new scriptfile and gets curious... because she may have similar group permissions, reads the file and bingo... just learned a new password. -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.