|
[Date Prev] [Date Next] [Thread Prev] [Thread Next] [Date Index] [Thread Index]
|
Re: [PLUG] EXT2 for Windows
|
On Fri, Dec 16, 2005 at 11:45:43AM -0500, Eugene Smiley wrote:
> First, I'm kinda stunned. Has anyone heard of and tried this yet?
I've used it a few times in the past few years to transfer data from the
Linux to the Windows partition of a dual boot machine, to work around the
limitations of Linux's NTFS write support. It worked well enough for that
purpose.
> Second, It would seem that if you do dual boot, that this actually
> opens a security hole. " The current version of the Ext2 file system
> driver does not maintain access rights. All users can access all the
> Ext2 volumes that a drive letter is created for. For example, if a
> drive letter has been created for an Ext2 volume, which is the root
> volume of a Linux installation, you can simply read and modify files
> such as /etc/passwd and /etc/shadow. User names are readable and
> passwords of these users can be quite easily cracked and modified!"
>
> Double edged sword, anyone?
It's no more of a security problem than booting a Knoppix disk is. Once
you have physical access to the harddisk, it's game over.
-mct
--
perl -e'$u="\4\5\6";sub H{8*($_[1]%79)+($_[0]%8)}sub G{vec$u,H(@_),1}sub S{vec
($n,H(@_),1)=$_[2]}$_=q^{P`clear`;for$iX){PG($iY)?"O":" "forX8);P"\n"}for$iX){
forX8){$c=scalar grep{G@$_}[$i-1Y-1Z-1YZ-1Y+1ZY-1ZY+1Z+1Y-1Z+1YZ+1Y+1];S$iY,G(
$iY)?$c=~/[23]/?1:0:$c==3?1:0}}$u=$n;select$M,$C,$T,.2;redo}^;s/Z/],[\$i/g;s/Y
/,\$_/xg;s/X/(0..7/g;s/P/print+/g;eval' # Michael C. Toren <mct@toren.net>
___________________________________________________________________________
Philadelphia Linux Users Group -- http://www.phillylinux.org
Announcements - http://lists.phillylinux.org/mailman/listinfo/plug-announce
General Discussion -- http://lists.phillylinux.org/mailman/listinfo/plug
|
|