[CentOS] what percent of time are there unpatched exploits against default config?

Thu Dec 29 15:41:06 UTC 2011
m.roth at 5-cent.us <m.roth at 5-cent.us>

夜神 岩男 wrote:
> On 12/30/2011 12:00 AM, m.roth at 5-cent.us wrote:
>> 夜神 岩男 wrote:
>>> On 12/29/2011 10:21 PM, Marko Vojinovic wrote:
>>>> On Thursday 29 December 2011 13:07:56 Reindl Harald wrote:
>>>>> Am 29.12.2011 12:56, schrieb Leonard den Ottolander:
>>>>>> On Thu, 2011-12-29 at 12:29 +0100, Reindl Harald wrote:
>>>>>>> Am 29.12.2011 09:17, schrieb Bennett Haselton:
<snip>
>>> When traveling I log in to my home server and work servers with my
>>> laptop. Its really a *lot* easier than using a bunch of pasword
>>> schemes.
>> <snip>
>> Ah, that brings to mind another issue with only passwords:
>> synchronization. I worked as a subcontractor for a *huge* US co a few
>> years ago. I've *never* had to write passwords down... but for there, I
>> had a page of them! Our group's, the corporate test systems, the
>> corporate *production* systems, and *each* had their own, along with
>> their own password aging (there was *no* single sign-on), the
>> contracting co's....
>
> Ah, forgot about that because its no longer a problem for me anymore.
> Using the same password on two systems is a religiously-to-be-observed
> rule that *most* users violate.
<snip>
Yeah, but this was *corporate*: systems I had no access to other than as a
user, with very limited sudo. I was *appalled* that they didn't have
single sign-on.

        mark