password protect the boot (i.e. bios password protection) would provie a mild
deterrant, but even then with a scrwedriver to open the case, and discharging
the bios you can disable said password.
basically, once you have access to the physical machine, you have access to
root. The machine is protected from unauthorized intrusion, only so far as the
access to the room.
and please note, unless you are talking about secondary entries in /etc/passwd
with the UID set as zero, there is only one "root" user, and that one, by
definition is the "right" root user. There are, by definition, (and so far as
any system utility is concerned), no pretenders.
Hope that this clarifies.
regards,
-Greg
On 05-Jun-00 Miroslav Skoric wrote:
> Fernando Lozano wrote:
>>
>> Hi there!
>>
>> > Simple way:
>> > Boot from diskette, mount the harddisk and change lilo.conf to
>> > remove single user password.
>> >
>> > Hard way (if you can't boot from diskette):
>> > Remove the harddisk. Install the harddisk in another Linux machine.
>> > Mount it. Change the lilo.conf of the original harddisk. Remove it.
>> > Mount it in the original machine. Boot as single user. Voilá...
>>
>> Easier yet:
>>
>> Lilo boot: linux single
>> ...
>> bash# passwd
>> <type your new root password here>
>> <confirm the new password>
>> bash#^D
>>
>
> Gentle folks,
>
> It looks to me that an access to a linux box is not protected at all if
> one follows what you all say. I mean, for example, if system
> administrator (root) is not present, anybody else could perform that you
> suggested and 'become' a new root. Now I wonder if there is a way to
> protect both root's and users' accounts from the unauthorized access?
> Btw, how the linux box can be sure that you are the 'right' root that
> forgot the password and not the one who pretends to be root?
>
> Misko
>
>
> --
> To unsubscribe: mail [EMAIL PROTECTED] with "unsubscribe"
> as the Subject.
----------------------------------
E-Mail: Gregory Hosler <[EMAIL PROTECTED]>
Date: 05-Jun-00
Time: 12:55:18
Black holes are where God divided by zero.
----------------------------------
--
To unsubscribe: mail [EMAIL PROTECTED] with "unsubscribe"
as the Subject.
