[Subject Prev][Subject Next][Thread Prev][Thread Next][Subject Index][Thread Index]

RE: [LI] Linux password security

To: linux-india@xxxxxxxxxxxxxxxxxxxxx
Subject: RE: [LI] Linux password security
From: Abhay Chrungoo <cabhay@xxxxxxxxxxxxx>
Date: Sat, 23 Oct 1999 09:51:30 +0530 (IST)
Cc: Benny Mathew <Benny@xxxxxxxxxx>
In-reply-to: <Pine.LNX.3.96.991021140804.2836B-100000@rishabh.wipinfo.soft.net>
Reply-to: linux-india
Sender: owner-linux-india@xxxxxxxxxxxxxxxxxxxxx

I dunno, but what if my floppy drive is disabled in the bios, my system
has only one operating system, I mean linux(irrespective of ver). And
Single User mode is protected by a password. 
IS THERE STILL A WAY OF BREAKING IN???????????????
(other than banging ones head against the server and hoping to cause some
damage).....

On Thu, 21 Oct 1999, Sharad Joshi wrote:

> On Thu, 21 Oct 1999, Benny Mathew wrote:
> 
> + Does this mean that if a person has physical access to a linux
> + machine... then there is no security???
> 
> In a way, yes (i mean yes to no security). A person carrying a linux boot
> floppy is as dangerous as one with AK56. And moreover if he has a
> perverted bent of mind, he can cause havoc to the system, at the minimum.
> 
> + How can one prevent somebody from booting the system in single user mode
> + and tampering the files... especially the /etc/passwd file????
> 
> I can't really tell how to stop the system from booting in single user
> mode. But one important thing, always maintain a backup copy of
> /etc/passwd (and for that matter - all the important files) in some floppy
> or may be, say, hard copy.
> 
> + Is there any way by which you can make the system to display the Login
> + screen in single user mode???
> + 
> 
> No, this would be redundant. Whats the use of this and how different this
> would be from normal user login? 
> 
> The bottomline is, if others have physical access to your machine,
> available security is not something you will relish.
> 
> Sharad.
> -=-=-=-=-=-=-
> 
> --------------------------------------------------------------------
> The Linux India Mailing List Archives are now available.  Please search
> the archive at http://lists.linux-india.org/ before posting your question
> to avoid repetition and save bandwidth.
> 

--------------------------------------------------------------------
The Linux India Mailing List Archives are now available.  Please search
the archive at http://lists.linux-india.org/ before posting your question
to avoid repetition and save bandwidth.

Follow-Ups:
- Re: [LI] Linux password security
  - From: Syed Khader Vali
- [LI] via-rhine and Dlink DFE-530TX
  - From: Rishi Gangoly

References:
- RE: [LI] Linux password security
  - From: Sharad Joshi

Prev by Subject: Re: [LI] Linux password security
Next by Subject: Re: [LI] Linux password security
Previous by thread: RE: [LI] Linux password security
Next by thread: Re: [LI] Linux password security
Index(es):
- Subject
- Thread