From owner-freebsd-hackers Sat Sep 20 22:04:09 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.7/8.8.7) id WAA13861 for hackers-outgoing; Sat, 20 Sep 1997 22:04:09 -0700 (PDT) Received: from ns.mt.sri.com (SRI-56K-FR.mt.net [206.127.65.42]) by hub.freebsd.org (8.8.7/8.8.7) with ESMTP id WAA13856 for ; Sat, 20 Sep 1997 22:04:01 -0700 (PDT) Received: from rocky.mt.sri.com (rocky.mt.sri.com [206.127.76.100]) by ns.mt.sri.com (8.8.7/8.8.7) with ESMTP id XAA01422; Sat, 20 Sep 1997 23:03:59 -0600 (MDT) Received: (from nate@localhost) by rocky.mt.sri.com (8.7.5/8.7.3) id XAA25758; Sat, 20 Sep 1997 23:03:32 -0600 (MDT) Date: Sat, 20 Sep 1997 23:03:32 -0600 (MDT) Message-Id: <199709210503.XAA25758@rocky.mt.sri.com> From: Nate Williams MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit To: Eivind Eklund Cc: hackers@freebsd.org Subject: Re: Is there a way to prompt for boot device? In-Reply-To: <199709202124.XAA18194@bitbox.follo.net> References: <199709200219.WAA13122@smoke.marlboro.vt.us> <19970920130551.DB36336@uriah.heep.sax.de> <199709202124.XAA18194@bitbox.follo.net> X-Mailer: VM 6.29 under 19.15 XEmacs Lucid Sender: owner-freebsd-hackers@freebsd.org X-Loop: FreeBSD.org Precedence: bulk > > > at least in 2.2.2, boot -a works only if you have the kernel > > > configured with "swap generic", which i think is not generally > It is a minor security breach - it would e.g. allow somebody with > physical access to boot from a floppy[1] even if the machine isn't > set up to do so from the BIOS. You can do that now, w/out swap generic. If you're that paranoid about security, do what I did and disable booting off anything but the standard kernel. If someone spams your, then *you* can go re-enable floppy boot and boot off a fixit floppy. Nate