On Wednesday 24 April 2002 11:28, Thomas Futschek wrote:
Hi list!
Recently I saw if you boot a kernel with a boot option like 'init=/bin/bash' (to example: linux init=/bin/bash) you become root without athentification.
Can anybody tell me why it works and how I protect?
You tell the kernel to execute /bin/bash as the first program after boot. You could protect from this by adding "password=xxx" to your /etc/lilo.conf. (Only useful if normal users cannot read this file) If you want the password only to be required when entering parameters on the lilo commandline, add an extra "restricted". See man lilo.conf. Andreas ********************************************************************** This email and any files transmitted with it are confidential and intended solely for the use of the individual or entity to whom they are addressed. If you have received this email in error please notify the system manager. This footnote also confirms that this email message has been scanned for the presence of computer viruses. **********************************************************************