User: Password:
|
|
Subscribe / Log in / New account

What lessons can be learned from the iPhone worms?

What lessons can be learned from the iPhone worms?

Posted Nov 12, 2009 12:50 UTC (Thu) by madhatter (subscriber, #4665)
Parent article: What lessons can be learned from the iPhone worms?

merely in the spirit of "here's how one phone did it", the openmoko runs an sshd ,has by default no root password, and permits root logins via ssh. but the daemon only listens on the usb interface, not any ppp (GPRS) or eth (wifi) interfaces that may pop up.

so you have to run a cable to the phone to use this attack method.


(Log in to post comments)

What lessons can be learned from the iPhone worms?

Posted Nov 14, 2009 1:12 UTC (Sat) by giraffedata (subscriber, #1954) [Link]

No password (assuming you mean you can log in without a password) makes more sense than default password. No password has the benefit of making it easier for authorized users to use, at the cost of increasing the chance of an unauthorized access (it's increased because there's always the possibility that the engineers overlooked some other method of running a login program). Default password just makes it harder for the authorized person while not slowing down the hacker at all.


Copyright © 2017, Eklektix, Inc.
Comments and public postings are copyrighted by their creators.
Linux is a registered trademark of Linus Torvalds