You don't even need the CDs if you use LILO: just put in the boot parameter init=/bin/sh and you'll be minimally logged in as root on startup. If you want to avoid this hole, put a password in lilo.conf, disable booting except from the hard disk in your bios setup, password protect your bios and never never network your computer. Then nobody can break in...unless they unscrew the box. JDL Sascha Kloss wrote:
Hello
I recently bought 7.1 pro and forgot my root password. It was terrible. Anyway, after a bit thinkin' I took out the CD 2 and started the 'rescue system'. With that I had FULL ACCESS on MY HDDs!! Even /etc/pwd... . I created a new user with no password and root privileges. With that I edited the root pwd and ...
ping-- There is my new root pwd.
Isn't this a security hole. Let's say Microsoft's WEB-Server's runnin' Linux and I would have 10 Minutes physical access and my CD 2 with me. Then I could change the ROOT pwd.
Sascha