From owner-freebsd-security  Wed Apr 12 11:03:28 1995
Return-Path: security-owner
Received: (from majordom@localhost)
          by freefall.cdrom.com (8.6.10/8.6.6) id LAA19305
          for security-outgoing; Wed, 12 Apr 1995 11:03:28 -0700
Received: from localhost (localhost [127.0.0.1])
          by freefall.cdrom.com (8.6.10/8.6.6) with SMTP id LAA19298
          ; Wed, 12 Apr 1995 11:03:27 -0700
X-Authentication-Warning: freefall.cdrom.com: Host localhost didn't use HELO protocol
To: Mr D Whitehead (Ext 2703) <davew@sees.bangor.ac.uk>
cc: freebsd-security@FreeBSD.org
Subject: Re: FreeBSD Security Problem? 
In-reply-to: Your message of "Wed, 12 Apr 95 16:33:28 BST."
             <9326.9504121533@sol.sees.bangor.ac.uk> 
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
Date: Wed, 12 Apr 1995 11:03:27 -0700
Message-ID: <19297.797709807@freefall.cdrom.com>
From: Gary Palmer (FreeBSD/ARM Team) <gpalmer@freefall.cdrom.com>
Sender: security-owner@FreeBSD.org
Precedence: bulk

In message <9326.9504121533@sol.sees.bangor.ac.uk>, Mr D Whitehead writes:
>	Now the problem.  I have been using FreeBSD (2.0R) at home (without 
>any problems) and also evaluating it for use at work.  One ancient and major 
>problem seems to exist (unless I have missed something or it has already been 
>altered) and that is the reboot to single user.  No password, nothing, just a 
>root shell to do with as you wish.  OK I know its not a problem at home - but 
>just imagine the fun all our undergraduates would have with this if we put a 
>machine in a public area (the current suggestion is for 50).

This is not a problem. You edit /etc/ttys and remove the ``secure'' keyword
from the console line. This means that a root password is required when
rebooting single user.

Hope this helps some.

Gary