On Thu, 28 Feb 2002 19:12:31 -0500 Doug McGarrett <dougmack@i-2000.com> wrote:
Most hacks come from people you know, accessing your console when you don't suspect it.
/snip/
Q1: How do you password protect LILO? Why should you have to do this, unless you have a saboteur on site? Oh, I guess I see: you are assuming someone has physical access.
In the /etc/lilo.conf file you can set a global password and a password for each image. If the global password is set, and you put "restricted" in each kernel image, then you are prompted for a password if someone tries to boot with ' linux single' or 'linux init=/binsh'. Q2: If you disable cdrom & floppy boot, and you have trouble,
aren't you up the creek?
No because you know the bios password, and if needed, can reset it to boot from cdrom or floppy if the need arises. It's a minor inconvenience, but protects you from unauthorized boots. -- $|=1;while(1){print pack("h*",'75861647f302d4560275f6272797f3');sleep(1); for(1..16){for(8,32,8,7){print chr($_);}select(undef,undef,undef,.05);}}