> That is a real big security hole if it were used in business. All you
would
> have to do is reset if you could not shutdown -r without being root or
> equivalent privilige. (Am I right?) Is there a way to block "linux
single"
> command if desired as long as you have root password saved in safe place?
I
> am not a business owner so it does not apply to me but it makes me wonder.
> It is not possible to log in WinNt without the administrative password,
> correct? If so, should'nt Linux be the same if desired?
Fair comment, BUT, in 'business', the Linux server should be locked tight in
a room where only the administrator has the key. Linux can be protected from
incoming attacks through the network or whatever, but the biggest danger is
always people meddling with the server through it's own consoles.
Somehow this always seems to be forgotten. If NT weren't locked down I could
do some major damage to the server, regardless of whether or not I have the
'root' password. Believe me. Just a reboot with a DOS floppy gives me some
access. Or, if that has been disabled and I can't open the box to clear the
CMOS for some reason, I could always just switch the server power pack from
230 back to 130. That will stop it running pretty quick too. I'm sure I can
think of more, but I'd need physical access to the box. See what I mean?
--
Edward Dekkers (Director)
Triple D Computer Services Pty. Ltd.
Western Australia
P: (08) 9397-1040
F: (08) 9397-0548
--
To unsubscribe: mail [EMAIL PROTECTED] with "unsubscribe"
as the Subject.
