On 23/6/99 Song Jianping wrote:
> Today someone login my linux box by single user mode, and changes
> root password. It's very dangerous. Now i have to do the same thing
> to change it back. Can I restrict the access to single user mode?
> For example, asking for a password?
if its intel box you could add the following to /etc/lilo.conf
[...]
label=linux
password=yourpasswd
restricted
this will allow unattended booting but if anyone adds any arguments at the
lilo prompt they will be prompted for the passwd you enter in the lilo.conf
file.
be sure do chmod 600 /etc/lilo.conf and chmod 700 /sbin/lilo
there is also a program called sulogin that is supposed to ask the root
passwd before granting the single user shell, according to the man page
init is supposed to run it, but I have not had any luck getting it to be
run.
anyone know how to get init to run sulogin any time singleuser mode is entered?
Best Regards,
Ethan Benson
To obtain my PGP key: http://www.alaska.net/~erbenson/pgp/
