Skip to main content

Thread: searching for plaintext passwords, and wiping them

-

i've been updating lot of security practices on last couple days, such making use of google's multi-factor authentication, , other such things. became curious was, passwords use being stored in plaintext in various places around system? did simple recursive grep on home directory against substring of password in question, , screen flooded lines containing password clear day in history log file in .lftp folder.

immediately, ran 'shred' on file, have no need of logs, but, else on ubuntu system storing various passwords in plaintext? run
code:
grep -r / "{password here}"
seems might take forever complete.

there tools might assist me this?

using grep fast you'll get. don't think other tool match spead.

however, way can speed ignoring directories containing large files know don't contain password. example, search password way too, avoid directories ~/videos, ~/music, ~/pictures, etc because grep has no reason spend hours looking through hundreds of gigabytes of video data , like.

i'd search in ~/.config ~/.local ~/.cache /etc /var etc.

1 more tip: running grep -i flag (ignore case, password detected along password , password) makes take longer. , longer mean this:
code:
alex@kubuntu:~$ dd if=/dev/urandom of=/tmp/largefile bs=1024 count=102400 102400+0 records in 102400+0 records out 104857600 bytes (105 mb) copied, 38.2717 s, 2.7 mb/s alex@kubuntu:~$ time grep string < /tmp/largefile   real    0m0.186s user    0m0.172s sys     0m0.012s alex@kubuntu:~$ time grep -i string < /tmp/largefile   real    0m22.089s user    0m20.676s sys     0m0.396s


Forum The Ubuntu Forum Community Ubuntu Specialised Support Security [all variants] searching for plaintext passwords, and wiping them


Ubuntu

Comments

Post a Comment

Popular posts from this blog

Some mp4 files not displaying correctly (CS6)

-
Image
a week ago in premiere pro cs6 world. one day updated windows, next day few .mp4 video files opened in premiere pro, played fine well, except fact display has green (sometimes multicolour, solid green block) bars in lower third of screen. see screenshot below.   these same files open/display fine in after effects, photoshop , vlc- , quicktime players. i'd read fromyears ago windows updates causing this, removed 1 of therecent kb's no avail. i did install adobemediaencodertrial_64-6.0.3-mul-adobeupdate and dynamiclinkmediaserverretail-1.0.1-mul-adobeupdate and reverted quicktime 7.6 but nothing makes difference.   in end, formatted c:\, reinstalled windows 7 ultimate 64bit , downloaded/installed 260 updates , reinstalled cs6 (and aforementioned ame , dlms updates , qt7.6) it's still same problem.   also tried exporting (part of) 1 of these files, see if wasn't display problem: exported file same properties original has green bars.   what else can do?   thanks in advanc
Read more

Thread: Samba is not authenticating with LDAP

-
hello everyone. i've setup hp proliant server running ubuntu precise 64bit. have server running precise has openldap server running on it. i'm trying samba server authenticate ldap server users able log samba using ldap credentials. followed directions on site: http://raerek.blogspot.com/2012/05/s...sing-ldap.html http://raerek.blogspot.com/2012/05/s...g-ldap_28.html i'm using mac running mountain lion connected samba share when message: "check server name or ip address, , try again. if continue have problems, contact system administrator." when go /var/log/samba/log.workstation [2013/04/02 21:56:33.187358, 0] auth/check_samsec.c:491(check_sam_security) check_sam_security: make_server_info_sam() failed 'nt_status_unsuccessful' $ testparm load smb config files /etc/samba/smb.conf rlimit_max: increasing rlimit_max (1024) minimum windows limit (16384) processing section "[oh-fileshare]&qu
Read more