From owner-freebsd-hackers Sat Jul 6 15:27:31 1996 Return-Path: owner-hackers Received: (from root@localhost) by freefall.freebsd.org (8.7.5/8.7.3) id PAA08077 for hackers-outgoing; Sat, 6 Jul 1996 15:27:31 -0700 (PDT) Received: from phaeton.artisoft.com (phaeton.Artisoft.COM [198.17.250.211]) by freefall.freebsd.org (8.7.5/8.7.3) with SMTP id PAA08072 for ; Sat, 6 Jul 1996 15:27:28 -0700 (PDT) Received: (from terry@localhost) by phaeton.artisoft.com (8.6.11/8.6.9) id PAA18933; Sat, 6 Jul 1996 15:23:49 -0700 From: Terry Lambert Message-Id: <199607062223.PAA18933@phaeton.artisoft.com> Subject: Re: What is the best way to setup a drive To: joelh@gnu.ai.mit.edu Date: Sat, 6 Jul 1996 15:23:49 -0700 (MST) Cc: terry@lambert.org, kaveman@magna.com.au, hackers@FreeBSD.ORG In-Reply-To: <199607062115.RAA21928@kropotkin.gnu.ai.mit.edu> from "Joel Ray Holveck" at Jul 6, 96 05:15:04 pm X-Mailer: ELM [version 2.4 PL24] MIME-Version: 1.0 Content-Type: text/plain; charset=US-ASCII Content-Transfer-Encoding: 7bit Sender: owner-hackers@FreeBSD.ORG X-Loop: FreeBSD.org Precedence: bulk > >>> I don't think there is a problem with symlinking /etc/passwd; in > >>> theory, it's not in use until after the mounts are done. > >> Except when booting single user with an insecure console. :) > > THere is no such thing as an insecure console, IMO. If they can > > use a screwdriver to remove the hard drive, single user > > non-password root access isn't a problem. > > Well, in the lab across the room from me, somebody can easily set up > an insecure suid program in no time and not be noticed. But somebody > is sure to notice through the glass walls the guy with a screwdriver > and a maniacal look. > > This is the same idea behind encryption: make it hard enough to make > it not worth the time spent to break root, for whatever reason. How obvious is rebooting from a floppy? Are all the power connectors, switches, etc. secured? Terry Lambert terry@lambert.org --- Any opinions in this posting are my own and not those of my present or previous employers.