Prev: monolingual Americans (was switching to console and zapping)
Next: Debian support on newer 4K Advanced format drives (rather than 512 bytes)
From: Lorenzo Beretta on 3 Jul 2010 14:50 Il 03/07/2010 12:50, Camaleón ha scritto: > On Fri, 02 Jul 2010 22:34:25 +0200, Merciadri Luca wrote: > >> Booting in `user-mode' (once chosen in the GRUB) and entering in >> `maintenance' says `Login incorrect' but this is actually `Incorrect >> password' that should be said, as `root' is the (default) maintenance >> user. Or that could be understood if `login' were to be taken in some >> larger extent (which is also one of its definition). Would you consider >> this as a bug? > > Well, it could be interpreted as "login incorrrect due to incorrect > password" :-) > > The fact is that you are providing wrong credentials and there are only > two possibilities, either username or password. Username was not asked so > it only lasts the password. > > If you consider this a bug (it could be), better report it as a > "whislist" bug. > > Greetings, > Methinks it's to make intrusions more difficult, that is, if it said "user ok - wrong pw" an intruder would *know* the username is ok and just focus on the password, while the way it is both username AND password must be guessed. This is probably a bit weird for the root user, but definitely not incorrect imho. Good luck with your p2 -- To UNSUBSCRIBE, email to debian-user-REQUEST(a)lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmaster(a)lists.debian.org Archive: http://lists.debian.org/4c2f80cb$0$19001$4fafbaef(a)reader5.news.tin.it
From: Merciadri Luca on 3 Jul 2010 17:10
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Lorenzo Beretta <lory.fulgi(a)infinito.it> writes: > Il 03/07/2010 12:50, Camaleón ha scritto: >> On Fri, 02 Jul 2010 22:34:25 +0200, Merciadri Luca wrote: >> >>> Booting in `user-mode' (once chosen in the GRUB) and entering in >>> `maintenance' says `Login incorrect' but this is actually `Incorrect >>> password' that should be said, as `root' is the (default) maintenance >>> user. Or that could be understood if `login' were to be taken in some >>> larger extent (which is also one of its definition). Would you consider >>> this as a bug? >> >> Well, it could be interpreted as "login incorrrect due to incorrect >> password" :-) True! > >> The fact is that you are providing wrong credentials and there are only >> two possibilities, either username or password. Username was not asked so >> it only lasts the password. That's not wrong too. >> If you consider this a bug (it could be), better report it as a >> "whislist" bug. >> >> Greetings, >> > Methinks it's to make intrusions more difficult, that is, if it said > "user ok - wrong pw" an intruder would *know* the username is ok and > just focus on the password, while the way it is both username AND > password must be guessed. I think so too. I won't file a bug / a wish for the aforementioned reasons. Thanks. > > This is probably a bit weird for the root user, but definitely not > incorrect imho. Clearly, that it appears as weird. > Good luck with your p2 Thanks. - -- Merciadri Luca See http://www.student.montefiore.ulg.ac.be/~merciadri/ - -- Fine feathers make fine birds. -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.9 (GNU/Linux) Comment: Processed by Mailcrypt 3.5.8 <http://mailcrypt.sourceforge.net/> iEYEARECAAYFAkwvorEACgkQM0LLzLt8Mhw7oACeODFzPl4y2ROCwJNdZJcOEJFk AnMAn3c2aQ87biqNnefcZqPpLYXoxg7p =+LRx -----END PGP SIGNATURE----- -- To UNSUBSCRIBE, email to debian-user-REQUEST(a)lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmaster(a)lists.debian.org Archive: http://lists.debian.org/878w5s5lxq.fsf(a)merciadriluca-station.MERCIADRILUCA |