Henri <[EMAIL PROTECTED]> writes: > on critical apps, on drakconf tools ecc. or not ? Perhaps this > would avoid big holes like the shutdown one, no ?
The shutdown problem is not a big hole. It grants local root access only for people with a login on the "physical" machine (console login). Securing those machines is already "something" since you at least need to password-protect the bootloader (and forbid booting from floppy/cdrom/network) and encrypt the partitions. Not to say it's non-important, but it's not a problem for servers, so to say. -- Guillaume Cottenceau - http://people.mandrakesoft.com/~gc/
