Stewart Stremler wrote:
begin quoting James G. Sack (jim) as of Fri, Mar 10, 2006 at 04:05:25PM -0800:
[snip]
I have also seen the root username renamed, and additional uid=0 users,
but I have a hunch the first might break something, and the second just
smells ugly.
I've made additional uid 0 users, and it's saved my bacon a time or two.
Removing _all_ passwords leaves an uneasy feeling. But I suppose if
there were some fallback login when whatever can't happen does, ...
Knoppix and friends...
# mount /dev/hda3 /mnt
# vi /mnt/etc/passwd
# sync
# umount /dev/hda3
# eject
# reboot
Yup, with physical access, there's always a way. (I don't want to even
think about encrypted filesystems, I guess <heh>)
..jim
--
[email protected]
http://www.kernel-panic.org/cgi-bin/mailman/listinfo/kplug-list
