On Wed, 4 Jun 2014 17:28:02 +0200
"Roberto E. Vargas Caballero" <k0ga_AT_shike2.com> wrote:
> It is not about the security of /etc/passwd, it is about you cannot
> ensure that hundred of users will use strong password, because you don't
> select theirs passwords, so at the end the security of your system
> depend of the password choosen by your users.
Well, who cares if one of them uses a weak password?
The worst thing that could happen is that this user is cracked and all
his data lost. No other users would be affected and in most cases not
the system in general.
If single users have higher access to valuable services, it is
nonetheless mandatory to make sure their passwords are safe. However,
who would let a n00b manage important stuff?
Cheers
FRIGN
--
FRIGN <dev_AT_frign.de>
Received on Wed Jun 04 2014 - 17:31:45 CEST