From owner-freebsd-security Fri Nov 9 7:24: 0 2001 Delivered-To: freebsd-security@freebsd.org Received: from mohegan.mohawk.net (mohegan.mohawk.net [63.66.68.21]) by hub.freebsd.org (Postfix) with ESMTP id B796C37B417 for ; Fri, 9 Nov 2001 07:23:58 -0800 (PST) Received: from mohegan.mohawk.net (mohegan.mohawk.net [63.66.68.21]) by mohegan.mohawk.net (8.11.4/8.11.3) with ESMTP id fA9FNuW09164; Fri, 9 Nov 2001 10:23:56 -0500 (EST) Date: Fri, 9 Nov 2001 10:23:56 -0500 (EST) From: Ralph Huntington To: Bart Matthaei Cc: Subject: Re: reboot,ctrl+alt+del,shutdown In-Reply-To: <20011109140755.C6511@heresy.dreamflow.nl> Message-ID: <20011109101749.E7523-100000@mohegan.mohawk.net> MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-security@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org > 1. Its answered in the FAQ Agreed, and the querant should have been directed there. > 2. Disabling cntrl+alt+del wont stop any malicious user. It will only > stop accidents from happening. I disagree. If the reset button and the power switch have been disabled and the power cord is not accessible and/or the machine is locked in a cabinet (but the keyboard is not), then disabling ctrl-alt-del could well prevent malicious rebooting, especially if the malicious one is a casual miscreant rather than a "pro". This applies in particular for paranoid installations where it is likely a policy matter. Ergo, this is a security question, at least in my mind. However, it is addressed in the faq and the querant should have been directed there. To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message