Why does www-data have /bin/sh as a shell?
I'm looking at /etc/password and can't help but notice the following entries:
Code:
games:x:5:60:games:/usr/games:/bin/sh Also, why is there a 'news' user on my system when I have no related software installed? (or do I? -- and how to detect said software) Same for lp, UUCP, proxy.. list.. gnats. |
Quote:
Quote:
|
The problem is, most users most likely don't care about further securing their syststem (perhaps thinking updating is enough or "linux is secure by default" <- result of bad propaganda) , let alone run auditing software.
Debian Specific: Given that the Debian Security How-To, turned into a book, would be over 100 pages long, and given that's just basic/minimal security.. I don't know how many users are willing to go through *THAT*. |
All times are GMT -5. The time now is 05:17 AM. |