White Papers
Cleartext Passwords in Linux Memory
Category: Desktops, Laptops and OS, Security
Tags: passwords, linux, email, applications, data
Overview Upon examination, the memory of a popular Linux distribution contained many cleartext passwords, including login, SSH, Truecrypt, email, IM and root passwords. These passwords are retained by running applications and stored as plain text in memory for extended periods of time. The paper investigated the source of these passwords and presents a proof-of-concept method for recovering passwords from memory. The cold boot researchers demonstrated that memory is not as volatile as commonly expected, and that data from memory can be recovered with physical access to systems in a very short period of time. This has opened up a new class of attacks in physical IT security, and significantly raised the risk associated with cleartext passwords in memory.
- Publisher
- Philosecurity.org
- File Format
- Date Published
- Feb 18, 2009
- Format
- White Papers
- Topics
- Linux - Open Source, Security Management
Similiar White Papers
Protection for Mac and Linux Computers: genuine need or nice to have?
The current risk to computers running non-Windows platforms is small but growing. As Macs and Linux computers become mor
Publisher: Sophos | Tags: computers, hackers, linux, mac, mac os, network, os
IBM Proventia Server Intrusion Prevention System for Linux
IBM Proventia Server Intrusion Prevention System (IPS) for Linux software supports compliance regulations that require s
Publisher: IBM | Tags: applications, data, data loss, dlp, downtime, ips, linux, real-time, server, software
How Dell Streamlined Authentication and Identity Management Using Quest's Vintela Authentication Services
Dell wanted to integrate authentication and identity management for Microsoft Windows, UNIX, and Linux platforms into Mi
Publisher: Dell | Tags: active directory, authentication, infrastructure, linux, management, microsoft windows
Using SELinux on an ICE-Linux CMS
This white paper is intended for IT professionals interested in using ICE-Linux with Security-Enhanced Linux (SELinux) e
Publisher: Hewlett-Packard (HP) | Tags: cms, linux
Confining the Apache Web Server With Security-Enhanced Linux
Restricting the access of a web server to system resources limits the potential damage caused to those resources through
Featured white papers
-
The Value of Location Intelligence in the Communications Industry
Public Services are under pressure, the challenge is to do more with less. How do you improve citizen satisfaction, increase cost efficiencies and improve service delivery? The power of location intelligence is helping many local authorities...
-
Best Practices for Translating Customer Satisfaction into Revenue
Today's support organisations are focused on two top-level metrics: financial results and customer satisfaction. For most, it's easy to track financial performance, but customer satisfaction is akin to speaking a foreign language...
-
HP print solutions and 3M
The objective for 3M was to optimize office printing infrastructure at 3M locations worldwide, reduce total cost and environmental footprint. Some of the business benefits acheived by switching to HP print solutions...
-
Check out these top business apps for your iPhone
-
Inside a Microsoft datacentre
-
Green IT without losing your edge
-
Peter Cochrane's latest video blog
-
What you need to know about Windows 7