Date: Tue, 3 Dec 1996 12:08:14 +1100 (EST) From: "Daniel O'Callaghan" <danny@panda.hilink.com.au> To: Joe Diehl <joed@telecom.ksu.edu> Cc: freebsd-security@freebsd.org Subject: Re: Securing the freebsd boot process Message-ID: <Pine.BSF.3.91.961203115014.1605o-100000@panda.hilink.com.au> In-Reply-To: <199612030007.SAA22848@telecom.ksu.edu>
next in thread | previous in thread | raw e-mail | index | archive | help
On Mon, 2 Dec 1996, Joe Diehl wrote: > Is there anyway to increase the security of a FreeBSD machine at boot > time? The two points of concern are booting into single user mode > without a password, This is solved partially by removing the 'secure' keyword from 'console' in /etc/ttys. That will force init to require the root password before starting a shell, if the system is booted in single-user mode. 'kill -HUP 1' after editing /etc/ttys. > and hitting Ctrl-C repeatedly while /etc/rc is > executing. Naturally, either of the two will drop the machine to a > root shell. Not sure about this. Perhaps someone else can explain the 'trap' section of sh(1) more clearly than sh.1 does (see the 'trap' statements at the start of /etc/rc) Danny
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?Pine.BSF.3.91.961203115014.1605o-100000>