Y
Hacker News
new
|
ask
|
show
|
jobs
by
danparsonson
812 days ago
If the hash permits a login then having a hash is essentially equivalent to having a password. The malicious user wouldn't be able to use it to sudo but they could deploy some other privilege escalation once logged in.