Date: Sat, 26 Jul 2008 20:12:23 +0200 From: Roland Smith <rsmith@xs4all.nl> To: Chuck Robey <chuckr@telenix.org> Cc: DSA - JCR <juancr@dsa.es>, freebsd-questions@freebsd.org Subject: Re: Root boot/mount Password? Message-ID: <20080726181223.GB17072@slackbox.xs4all.nl> In-Reply-To: <488B6497.80004@telenix.org> References: <3176.84.18.27.248.1217093483.squirrel@mail.dsa.es> <488B6497.80004@telenix.org>
next in thread | previous in thread | raw e-mail | index | archive | help
--neYutvxvOLaeuPCA Content-Type: text/plain; charset=us-ascii Content-Disposition: inline Content-Transfer-Encoding: quoted-printable On Sat, Jul 26, 2008 at 01:53:27PM -0400, Chuck Robey wrote: > -----BEGIN PGP SIGNED MESSAGE----- > Hash: SHA1 >=20 > DSA - JCR wrote: > > Hi all > >=20 > > FreeBSD 6.2 > >=20 > > I would like to put a password when booting/mounting mi Freebsd box. > > is it possible? How? > >=20 > > What I want is that if the system is rebooted or shutdown, somebody must > > enter a password to boot and/or mounting "/" > >=20 > > is for protecting the system from unauthorized users >=20 > A couple of items here. The first is a long known rule of security, whic= h is, > if an attacker has physical access to the console, then the game is up, y= ou > can't protect it any more. You cannot protect the machine if an attacker has physical access. But you _can_ protect your data by encrypting it. Hence my advice to use geli(8= ). Roland --=20 R.F.Smith http://www.xs4all.nl/~rsmith/ [plain text _non-HTML_ PGP/GnuPG encrypted/signed email much appreciated] pgp: 1A2B 477F 9970 BA3C 2914 B7CE 1277 EFB0 C321 A725 (KeyID: C321A725) --neYutvxvOLaeuPCA Content-Type: application/pgp-signature Content-Disposition: inline -----BEGIN PGP SIGNATURE----- Version: GnuPG v2.0.9 (FreeBSD) iEYEARECAAYFAkiLaQcACgkQEnfvsMMhpyUa/ACeJ0+R1sj5n4bRjTalV9E3HSgn AeUAnR+/YyCn0u3taMkaIVDphJB2g1tl =1Ob5 -----END PGP SIGNATURE----- --neYutvxvOLaeuPCA--
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20080726181223.GB17072>