Thomas Futschek wrote:
Hi list!
Recently I saw if you boot a kernel with a boot option like 'init=/bin/bash'
(to example: linux init=/bin/bash) you become root without athentification.
You should maybe read the documentation of your boot loader. (lilo, grub?) Quickly you will find out that there are of course ways to restrict the possibilities to boot Linux like this. But as far as security is concerned this can only be one step in securing your machine (if this is what your want) since most PCs still have floppy drives and creating a linux boot floppy is not really difficult. So you have disable access to your floppy drive in the BIOS, at least protect access to the BIOS with a password or even better remove the floppy drive alltogether. And depending on your wanted level of security you might have to bury your machine in a deep dungeon where no one will ever be able to access it anymore - be it physically or over a network link ;-) Anyway, man lilo and man lilo.conf would be sufficient to solve your problem I guess.
Can anybody tell me why it works and how I protect?
It works because someone wanted that feature, and it can be helpful for all kind of things from filesystem recovery to detection of hardware problems.
Thanx! Thomas
-- Have A Nice Day -- ________________________________________________________________ Keine verlorenen Lotto-Quittungen, keine vergessenen Gewinne mehr! Beim WEB.DE Lottoservice: http://tippen2.web.de/?x=13
HTH, Erwin