This appeared a few weeks ago, I think on this list. But for those of you
who missed it, and for those who want to look over a document that addresses
security from every which way, I (re)introduce "Linux Administrators
Security Guide":
http://www.seifried.org/lsag/
Written by Kurt Seifried ([EMAIL PROTECTED])
Its version 0.0.9. He says 0.1.0 due soon.
HTH
Douglas Ort
[EMAIL PROTECTED]
~-----Original Message-----
~From: [EMAIL PROTECTED]
~[mailto:[EMAIL PROTECTED]]On Behalf Of Ray Olszewski
~Sent: Tuesday, May 04, 1999 12:04 PM
~To: Michael K. Magambo; Linux
~Subject: Re: LILO
~
~
~Others already answered your main question ... but if you want a "totally
~secure system", you need to address other vulnerabilities as well. Securing
~against someone who has physical access to the system is very difficult, if
~not impossible.
~
~In your case, you also need to prevent someone from booting the system from
~a floppy, which can give the user full, priveleged access to the entire
~system. I suppose you could do this either by not having a floppy drive in
~the system or by (a) setting the BIOS so the system boots only from C: (or
~SCSI, depending on what disk controller you use) and (b) password
~protecting
~the BIOS. Even then, I imagine someone could manage a workaround ... but at
~least you've gotten to the point where breaking into the machine requires
~opening the box and fiddling with the hardware.
~
~
~At 10:38 AM 5/4/99 +0300, Michael K. Magambo wrote:
~>I have recently installed Redhat 5.2 which is working fine except for
~>LILO. A friend of mine entered my system by simply typing linux single.
~>He then got super user access. How can I disable this feature of LILO.
~>I want a totally secure system.
~
~------------------------------------"Never tell me the odds!"---
~Ray Olszewski -- Han Solo
~762 Garland Drive
~Palo Alto, CA 94303-3603
~650.328.4219 voice
~[EMAIL PROTECTED]
~----------------------------------------------------------------
~
