From owner-freebsd-questions@FreeBSD.ORG Sat Jul 26 19:58:56 2008 Return-Path: Delivered-To: freebsd-questions@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id BA0F51065678 for ; Sat, 26 Jul 2008 19:58:56 +0000 (UTC) (envelope-from freebsd@edvax.de) Received: from mx01.qsc.de (mx01.qsc.de [213.148.129.14]) by mx1.freebsd.org (Postfix) with ESMTP id 801F28FC16 for ; Sat, 26 Jul 2008 19:58:56 +0000 (UTC) (envelope-from freebsd@edvax.de) Received: from r55.edvax.de (port-92-195-48-80.dynamic.qsc.de [92.195.48.80]) by mx01.qsc.de (Postfix) with ESMTP id 19346506A5 for ; Sat, 26 Jul 2008 21:58:54 +0200 (CEST) Received: from r55.edvax.de (localhost [127.0.0.1]) by r55.edvax.de (8.14.2/8.14.2) with SMTP id m6QJwsbF001624 for ; Sat, 26 Jul 2008 21:58:54 +0200 (CEST) (envelope-from freebsd@edvax.de) Date: Sat, 26 Jul 2008 21:58:53 +0200 From: Polytropon To: freebsd-questions@freebsd.org Message-Id: <20080726215853.166d6840.freebsd@edvax.de> In-Reply-To: <3176.84.18.27.248.1217093483.squirrel@mail.dsa.es> References: <3176.84.18.27.248.1217093483.squirrel@mail.dsa.es> Organization: EDVAX X-Mailer: Sylpheed 2.4.7 (GTK+ 2.12.1; i386-portbld-freebsd7.0) Mime-Version: 1.0 Content-Type: text/plain; charset=US-ASCII Content-Transfer-Encoding: 7bit Subject: Re: Root boot/mount Password? X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list Reply-To: Polytropon List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sat, 26 Jul 2008 19:58:56 -0000 Hi! Allthough you already got good answers, I'd like to add the following: On Sat, 26 Jul 2008 17:31:23 -0000 (GMT), "DSA - JCR" wrote: > Hi all > > FreeBSD 6.2 > > I would like to put a password when booting/mounting mi Freebsd box. > is it possible? How? > > What I want is that if the system is rebooted or shutdown, somebody must > enter a password to boot and/or mounting "/" Next to the usual means of access control (no automated login, no users without password), there would be an option to boot the system in single user mode first. Your /etc/ttys would contain "insecure" in the 5th field so nobody would get into the shell without the root password. Then, fsck and mount -a, followed by "exit" or Ctrl-D would be neccessary to boot the system into multi user mode. To boot your system into SUM, I think /boot/loader.conf must contain the line ,,boot_single="YES"''. If I remember correctly, there as been a way to put a password request into a much earlier stage of booting (boot oder loader), but sadly, I can't remember where to do this or if it's still possible. Maybe these ideas are helpful. -- Polytropon >From Magdeburg, Germany Happy FreeBSD user since 4.0