From owner-freebsd-security  Wed Apr 12 11:49:02 1995
Return-Path: security-owner
Received: (from majordom@localhost)
          by freefall.cdrom.com (8.6.10/8.6.6) id LAA20125
          for security-outgoing; Wed, 12 Apr 1995 11:49:02 -0700
Received: from aries.ibms.sinica.edu.tw ([140.109.40.248])
          by freefall.cdrom.com (8.6.10/8.6.6) with ESMTP id LAA20113
          for <freebsd-security@FreeBSD.org>; Wed, 12 Apr 1995 11:48:54 -0700
Received: (from taob@localhost) by aries.ibms.sinica.edu.tw (8.6.11/8.6.9) id CAA00612; Thu, 13 Apr 1995 02:42:54 +0800
Date: Thu, 13 Apr 1995 02:42:54 +0800 (CST)
From: Brian Tao <taob@gate.sinica.edu.tw>
To: Mr D Whitehead <davew@sees.bangor.ac.uk>
cc: freebsd-security@FreeBSD.org
Subject: Re: FreeBSD Security Problem?
In-Reply-To: <9326.9504121533@sol.sees.bangor.ac.uk>
Message-ID: <Pine.BSI.3.91.950413023944.275D-100000@aries.ibms.sinica.edu.tw>
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII
Sender: security-owner@FreeBSD.org
Precedence: bulk

On Wed, 12 Apr 1995, Mr D Whitehead wrote:
> 
> One ancient and major problem seems to exist (unless I have missed
> something or it has already been altered) and that is the reboot to
> single user.  No password, nothing, just a root shell to do with as
> you wish.

    Mark the console as "insecure" in /etc/ttys.  Remove floppy drives
from the machines too.  ;-)
-- 
Brian ("Though this be madness, yet there is method in't") Tao
taob@gate.sinica.edu.tw <-- work ........ play --> taob@io.org