Quote:
Originally Posted by SmokeyTheBear
i think the basic assumption when setting up a nats user admin is that you will be the only one who can login and obtain data from the server. A backdoor is a way past "normal" login procedures ( i.e. the account the nats program owner has created )
When you setup nats you provide login details for those whom you wish permission to access nats. Anyone else remotely accessing nats software using an account that was not created with these permission would be a backdoor as is commonly known.
|
OK I see what you're saying - however, the 'backdoor' account in that case could be any admin account and the end user was always free to change the pass or delete the account as/when he felt like it. The admin account even showed at the top of the whole user list (all admin accounts do, top rank are super users etc etc).
I wouldn't class that as a backdoor - simply an admin account. Nothing hidden.