Mailinglist Archive: opensuse-security (228 mails)

< Previous Next >
Re: [suse-security] Problem with second user with uid 0?
  • From: Jon Clausen <jon@xxxxxxxxxxxxx>
  • Date: Sat, 12 Mar 2005 08:56:11 +0100
  • Message-id: <20050312075610.GA4669@xxxxxxxxxxxxxxxxx>
On Fri, 11 Mar, 2005 at 23:52:39 +0100, Frank Steiner wrote:

<snip>

> Anyway, in which way would this be more secure than giving the user the
> password? Booting from a CD to perform the fsck, he can enter a new
> encrypted string to /etc/shadow and has the root password after rebooting.

<snip>

So why don't you simply do that?

Right before you leave, you edit /etc/shadow and

- move 'your' encrypted string off of the system
- enter a different string

And when you return;

Move 'your' string back into /etc/shadow.

HTH
/Jon
--
YMMV

< Previous Next >
Follow Ups