Date: Wed, 12 Apr 1995 10:13:34 -0700 (PDT) From: nlawson@statler.csc.calpoly.edu (Nathan Lawson) To: davew@sees.bangor.ac.uk (Mr D Whitehead) Cc: security@FreeBSD.org Subject: Re: FreeBSD Security Problem? Message-ID: <9504121713.AA05444@statler.CalPoly.Edu> In-Reply-To: <9326.9504121533@sol.sees.bangor.ac.uk> from "Mr D Whitehead" at Apr 12, 95 04:33:28 pm
next in thread | previous in thread | raw e-mail | index | archive | help
> First the compliments - great job so far. > > Now the problem. I have been using FreeBSD (2.0R) at home (without > any problems) and also evaluating it for use at work. One ancient and major > problem seems to exist (unless I have missed something or it has already been > altered) and that is the reboot to single user. No password, nothing, just a > root shell to do with as you wish. OK I know its not a problem at home - but > just imagine the fun all our undergraduates would have with this if we put a > machine in a public area (the current suggestion is for 50). > > We would really like to replace our ageing Sun SLC's but are seriously > worried about the above problem - any comments? Only that it's not a problem. Change the entry in /etc/ttys for "console" from "secure" to "insecure" and you will be required to enter the root password before being dropped to a shell in single-user mode. Hope this helps. -- Nathan Lawson | "If the automobile had followed the same development as the CSL 490/News Admin | computer, a Rolls-Royce would today cost $100, get a 756-7180 @Work | million miles per gallon, and explode once a year, ------------------- killing everyone inside." -- Robert Cringely
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?9504121713.AA05444>