On 8/26/05, Stan Glasoe <srglasoe@comcast.net> wrote:
On Friday 26 August 2005 8:54 am, Basil Chupin wrote:
I've nad the need to look at what is available on the 'net about what to do when one forgets what the root password is.
Is it really THAT simple on SuSE to alter the password for the root? Anyone can boot my system and go about altering my root password to be then able to steal all my secrets?
Cheers.
-- The first myth of management is that it exists. ^ security ^
Simple answer: YES! As both WABonnet and Ben point out.
Disabling BIOS boot to floppy, CD, USB or anything but hard drive and putting password(s) on BIOS and locking it up in a hardened bunker will help...
Stan
As others pointed out - its that easy. Your "secrets" should be stored on an encrypted partition/filesystem. Still if someone has a physical access to your harddrive, and your "secrets" does cost something, someone may try brute-force decryption. -- Svetoslav Milenov (Sunny)