URL:
<http://savannah.gnu.org/bugs/?41801>
Summary: Please provide a possibility in /etc/default/grub to
pass --unrestricted to all menuentries
Project: GNU GRUB
Submitted by: abe
Submitted on: Fr 07 Mär 2014 13:18:39 GMT
Category: Configuration
Severity: Major
Priority: 5 - Normal
Item Group: Feature Request
Status: None
Privacy: Public
Assigned to: None
Originator Name:
Originator Email:
Open/Closed: Open
Discussion Lock: Any
Release:
Release: 2.00
Reproducibility: None
Planned Release: None
_______________________________________________________
Details:
This is more or less a followup to these two bug reports:
* https://savannah.gnu.org/bugs/?func=detailitem&item_id=37020
* https://savannah.gnu.org/bugs/?func=detailitem&item_id=39351
From Grub 1.99 to 2.00 the way password protection is handled was changed on
purpose. See Vladimir's comments on the bug reports above.
Nevertheless the old behaviour (now possible with the --unrestricted option of
menuentry) is vital for deployments of Linux workstations in enterprises and
universities and hence missed in many distributions:
* https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=708181
* https://bugs.launchpad.net/ubuntu/+source/grub2/+bug/1050851
* https://bugs.launchpad.net/linuxmint/+bug/1223147
* https://bugzilla.redhat.com/show_bug.cgi?id=840204
The following paragraphs are a citation from
https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=708181#32:
---snip---
Within the Red Hat bug report for this issue, a solution was
proposed[0] that seems to be simple yet clean: make the behavior
configurable by introducing a GRUB_RESTRICTED variable. This way, the
new (much stricter) behavior can be used by default, yet one can still
revert back to the old behavior with a simple change in /etc/default/grub.
This change in default behavior really is a bad oversight. There no
longer seems to be a way to generally protect menu entries from
editing only, as there has been for ages before. With the new
behavior, this is only possible by changing /etc/grub.d/10_linux, or
the final grub.conf itself.
[0] https://bugzilla.redhat.com/show_bug.cgi?id=840204#c32
---snap---
Please apply this patch to allow administrators to easily configure the
previous behaviour without having to edit 10_linux or grub.cfg itself.
_______________________________________________________
Reply to this item at:
<http://savannah.gnu.org/bugs/?41801>
_______________________________________________
Nachricht gesendet von/durch Savannah
http://savannah.gnu.org/
_______________________________________________
Bug-grub mailing list
Bug-grub@gnu.org
https://lists.gnu.org/mailman/listinfo/bug-grub
