From owner-freebsd-security Wed Apr 26 17:15:10 1995 Return-Path: security-owner Received: (from majordom@localhost) by freefall.cdrom.com (8.6.10/8.6.6) id RAA02536 for security-outgoing; Wed, 26 Apr 1995 17:15:10 -0700 Received: from bunyip.cc.uq.oz.au (bunyip.cc.uq.oz.au [130.102.2.1]) by freefall.cdrom.com (8.6.10/8.6.6) with SMTP id RAA02519 for ; Wed, 26 Apr 1995 17:14:18 -0700 Received: from s1.elec.uq.oz.au by bunyip.cc.uq.oz.au with SMTP (PP); Thu, 27 Apr 1995 10:13:07 +1000 Received: from s4 (s4.elec.uq.oz.au) by s1.elec.uq.oz.au (4.0/SMI-4.0) id AA10823; Thu, 27 Apr 95 10:12:44 EST From: clary@elec.uq.oz.au (Clary Harridge) Message-Id: <9504270012.AA10823@s1.elec.uq.oz.au> Subject: Re: DISKLESS users become root To: smace@metal-mail.neosoft.com (Scott Mace) Date: Thu, 27 Apr 1995 10:11:57 +1000 (EST) Cc: freebsd-security@FreeBSD.org In-Reply-To: <199504261521.JAA01305@metal.ops.neosoft.com> from "Scott Mace" at Apr 26, 95 09:21:20 am X-Mailer: ELM [version 2.4 PL22] Content-Type: text Content-Length: 714 Sender: security-owner@FreeBSD.org Precedence: bulk > > I think if you make console in /etc/ttys be insecure, it will solve > you problem. This is require the root password to go into single > user mode. Without this, the console is a very insecure place... > > Scott Thanks Scott but No I am afraid that is not the problem. Whether the console is secure or insecure makes no difference. init receives the SIGINT and prompts for a shell only It as if the define "SECURE" was undefined during the build of /sbin/init but I can see that it is defined in the Makefile. -- regards Dept. of Electrical Engineering, Clary Harridge University of Queensland, QLD, Australia, 4072 Phone: +61-7-365-3636 Fax: +61-7-365-4999 INTERNET: clary@elec.uq.oz.au