-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
- From the LOGIN(1) man-page:
"As with any program, loginīs appearance can be faked. If non-trusted
users have physical access to a machine, an attacker could use this to
obtain the password of the next person coming to sit in front of the
machine. Under Linux, the SAK mechanism can be used by users to initiate
a trusted path and prevent this kind of attack."
What is the SAK mechanism?
- --
Christopher Howard
http://indicium.us
http://theologia.indicium.us
I digitally sign /all/ of my e-mails via PGP. If you receive any e-mail
from me without my valid PGP signature, please take additional steps to
verify the authenticity of the message.
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.9 (GNU/Linux)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org
iEYEARECAAYFAkoocc8ACgkQQ5FLNdi0BcXwigCeIZszYLYLKyoCrHRbZhYR5WZF
EkEAoJkRjdJVyw8i2FYATazdH0wR5nfK
=6Vlk
-----END PGP SIGNATURE-----
---------
To unsubscribe, send email to <aklug-request@aklug.org>
with 'unsubscribe' in the message body.
Received on Thu Jun 4 17:16:15 2009
This archive was generated by hypermail 2.1.8 : Thu Jun 04 2009 - 17:16:15 AKDT