[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: p.s. (was: Re: Shutdown by a user)
Hello,
guy keren wrote:
> an important note - if you let your user run the 'shutdown' command, they
> will be able to bring the system into single user mode and immediatly have
> a root shell. this is not a good idea. and this is the default setting on
> redhat 6.0... is it the same on redhat 6.2?
You can password protect LILO, by prepending the following to
/etc/lilo.conf:
password = "foo"
restricted
(the "restricted" says a password it needed only if the kernel
parameters are provided).
With LILO password and proper BIOS configuration (including password),
you can't enter single user mode with anything short of a screw driver
or a BUGTRAQ post.
Regards,
Eran Tromer
=================================================================
To unsubscribe, send mail to linux-il-request@linux.org.il with
the word "unsubscribe" in the message body, e.g., run the command
echo unsubscribe | mail linux-il-request@linux.org.il