On Friday 12 July 2002 11:09, you wrote:
On suse 8.0 I Have noticed something. When I boot on linux cd (rescue system), I can acces to my partition with root account with no password. Consequence : I can clear root password, and when I reboot, have full access to linux , like root with no password. Is it possible to correct this problem ?
Well this one really is a feature, not a bug. What will you do when you've forgotten the root password, or it's corrupt? The machine must be made physically secure, if you can't lock the room and have to let in untrusted people put the machine in a lockable cage that prevents access to the disk drives. You can also get little locks for e.g. floppy drives, and many BIOSes accept passwords that prevent changes to the BIOS. In some you can make the CD unbootable, though then you are reduced to dismantling the machine and setting a bios recovery jumper if you forget _that_ password. One thing you can do is make sure the shutdown commands aren't available to users and you can set hard or paranoid permissions (think you still can ...). But mostly, keep bad people away from the console. HTH Fergus