TLUG Mailing List

Mailing List Archive

tlug.jp Mailing List tlug archive tlug Mailing List Archive

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: [tlug] CentOS using default/blank? password postgres

Date: Fri, 22 Aug 2008 08:44:41 +0200

From: Christian Horn <chorn@example.com>

Subject: Re: [tlug] CentOS using default/blank? password postgres

References: <78d7dd350808202324n25d74f01s338bc519e2f964da@mail.gmail.com>

User-agent: Mutt/1.5.13 (2006-08-11)
On Thu, Aug 21, 2008 at 03:24:20PM +0900, Hung Nguyen Vu wrote:
> 
> My friend's CentOS 5.2 got hit by a scan and the bad guy was in.
> 
> postgres pts/1        Wed Aug 20 08:45 - 08:54  (00:08)
> host20-31-dynamic.52-82-r.retail.telecomitalia.it
> postgres pts/1        Wed Aug 20 08:17 - 08:40  (00:23)     121.14.139.26
> 
> I am not sure if CentOS mentions this issue at any point but at least,
> during the installation of postgres,
> he was not informed that he had to change the password of  user postgres.

At least the upstream from redhat has no linux-password set for user
postgres by default:

# grep postgre /etc/shadow
postgres:!!:14098::::::
# cat /etc/redhat-release 
Red Hat Enterprise Linux Server release 5.2 (Tikanga)

Wondering what could drive centos-people to set a password..


Christian
Follow-Ups:

Re: [tlug] CentOS using default/blank? password postgres
From: Ian Barwick

Re: [tlug] CentOS using default/blank? password postgres
From: Sigurd Urdahl

References:

[tlug] CentOS using default/blank? password postgres
From: Hung Nguyen Vu

Prev by Date: Re: [tlug] Downloaded Python file there and not there

Next by Date: Re: [tlug] CentOS using default/blank? password postgres

Previous by thread: Re: [tlug][C&C] CentOS using default/blank? password postgres

Next by thread: Re: [tlug] CentOS using default/blank? password postgres

Index(es):

Date

Thread

Home | Main Index | Thread Index

Home Page Mailing List Linux and Japan TLUG Members Links