 |
It makes this and RHEL and Rocky impossible to use for any government contract work whatsoever. And Ubuntu is not preferred. |
|
|
I should have said "as soon as connected to internet and logging in with the GUI" the password is changed. I'm done trying, eventually I just kept the internet attached to catch the frames. |
|
|
Last note. It's actually a win for Rocky and RHEL. Attackers have to lock the user out to prevent them from switching to a different, more vulnerable OS. I'd check for network stack activity within password management. |
|
|
They're using 0.0.0.0/0 for the ip and ff:ff:ff:ff:ff:ff for the mac in these frames. I mean that's one way. But it can be changed to anything. |
|
|
Apple does these type of checks through GUI checks. They make sure in their pam modules that there is an active GUI session initiating the pam auth request. But the server install has the same issue. |
- Anonymous
