[suse-security] inittab entry
Hello, Was concerned about the control-alt-delete entry in the default /etc/inittab file. Was curious to hear if good practice was typically to remove this entry entirely or replace the shutdown command with something else. Please let me know.
Thanks, John
"Olson, John C" schrieb:
Hello,
Was concerned about the control-alt-delete entry in the default /etc/inittab file. Was curious to hear if good practice was typically to remove this entry entirely or replace the shutdown command with something else. Please let me know.
Hi John, it depends. The worst part is physical access to the machine. You need to get quite close to it to do the three finger salut. beeing as close as that, you can also easily press the reset button or pull the plug. (and then use a tin opener and walk off with the harddrive) IMHO this is just a way to shut down / restart the machine (controlled) through other people. In pre KDM login times, it was a good idea to tell your offspring / wife to "just shut it down by Ctrl+Alt-Del" instead of giving the root pw away. Juergen
Thanks, John
-- =========================================== __ _ Juergen Braukmann juergen.braukmann@gmx.de| -o)/ / (_)__ __ ____ __ Tel: 0201-743648 dk4jb@db0qs.#nrw.deu.eu | /\\ /__/ / _ \/ // /\ \/ / ===========================================_\_v __/_/_//_/\_,_/ /_/\_\
On Friday 14 June 2002 15:45, Olson, John C wrote:
Hello,
Was concerned about the control-alt-delete entry in the default /etc/inittab file. Was curious to hear if good practice was typically to remove this entry entirely or replace the shutdown command with something else. Please let me know. It is sometimes useful to have it if I cannot login to the box due to some reason and want to shutdown it gracefully to save me from fsck.
If the keyboard is near the box anyway I'm not concerned about someone pressing control-alt-delete, he/she could use the power switch or reset button, too. I would rather think about physical security of the box itself. If I had a box secured somewhere and the keyboard accessible from the public, I would probably disable this inittab entry. Andreas Baetz ********************************************************************** This email and any files transmitted with it are confidential and intended solely for the use of the individual or entity to whom they are addressed. If you have received this email in error please notify the system manager. This footnote also confirms that this email message has been scanned for the presence of computer viruses. **********************************************************************
participants (3)
-
Andreas Baetz
-
Juergen Braukmann
-
Olson, John C